Bluez Security Vulnerabilities and Issues — Bluez CVE List

Lucene search

BluezBluez

10 matches found

CVE•added 2020/10/15 3:15 a.m.•305 views

CVE-2020-27153

In BlueZ before 5.55, a double free was found in the gatttool disconnect_cb() routine from shared/att.c. A remote attacker could potentially cause a denial of service or code execution, during service discovery, due to a redundant disconnect MGMT event.

8.6CVSS8.2AI score0.01899EPSS

CVE•added 2022/03/10 5:44 p.m.•174 views

CVE-2022-0204

A heap overflow vulnerability was found in bluez in versions prior to 5.63. An attacker with local network access could pass specially crafted files causing an application to halt or crash, leading to a denial of service.

8.8CVSS8.1AI score0.00057EPSS

CVE•added 2024/05/03 2:15 a.m.•139 views

CVE-2023-27349

BlueZ Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the t...

8CVSS7.2AI score0.03098EPSS

CVE•added 2021/11/29 8:15 a.m.•106 views

CVE-2019-8922

A heap-based buffer overflow was discovered in bluetoothd in BlueZ through 5.48. There isn't any check on whether there is enough space in the destination buffer. The function simply appends all data passed to it. The values of all attributes that are requested are appended to the output buffer. Th...

8.8CVSS8.6AI score0.00066EPSS

CVE•added 2022/09/02 4:15 a.m.•92 views

CVE-2022-39176

BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate params_len.

8.8CVSS8.2AI score0.00075EPSS

CVE•added 2022/09/02 4:15 a.m.•86 views

CVE-2022-39177

BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in profiles/audio/avdtp.c.

8.8CVSS8.1AI score0.00038EPSS

CVE•added 2024/11/22 9:15 p.m.•85 views

CVE-2024-8805

BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...

8.8CVSS9AI score0.00414EPSS

CVE•added 2024/05/03 3:16 a.m.•81 views

CVE-2023-50230

BlueZ Phone Book Access Profile Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the target must conne...

8CVSS7.2AI score0.02825EPSS

CVE•added 2024/05/03 3:16 a.m.•80 views

CVE-2023-50229

8CVSS7.1AI score0.02901EPSS

CVE•added 2024/05/03 3:15 a.m.•73 views

CVE-2023-44431

BlueZ Audio Profile AVRCP Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the target m...

8CVSS7.3AI score0.01697EPSS