| CVE-2021-41229 |
AVG-2553 |
Medium |
Yes |
Denial of service |
In BlueZ, a vulnerability exists in sdp_cstate_alloc_buf which allocates memory which will always be hung in the singly linked list of cstates and will not... |
| CVE-2021-3658 |
AVG-2231 |
Low |
Yes |
Information disclosure |
bluetoothd from bluez before version 5.61 incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If... |
| CVE-2021-3588 |
AVG-2061 |
Medium |
Yes |
Information disclosure |
A security issue has been found in BlueZ before version 5.56. The cli_feat_read_cb() function in src/gatt-database.c does not perform bounds checks on the... |
| CVE-2020-26558 |
AVG-2050 |
Medium |
Yes |
Private key recovery |
Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the... |
| CVE-2020-0556 |
AVG-1116 |
High |
Yes |
Access restriction bypass |
It was discovered that the HID and HOGP profiles implementations in bluez before 5.54 don't specifically require bonding between the device and the host.... |
| CVE-2017-1000250 |
AVG-396 |
High |
Yes |
Information disclosure |
An information-disclosure flaw was found in the bluetoothd implementation of the Service Discovery Protocol (SDP). A specially crafted Bluetooth device... |