bluez (SUSE:Linux Enterprise Module for Basesystem 15 SP1) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Basesystem 15 SP1 package bluez, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (6)
CVE-2020-27153 — CVSS 8.6 (high): In BlueZ before 5.55, a double free was found in the gatttool disconnect_cb() routine from shared/att.c. A remote attacker could…
CVE-2016-9917 — CVSS 7.5 (high): In BlueZ 5.42, a buffer overflow was observed in "read_n" function in "tools/hcidump.c" source file. This issue can be triggered by…
CVE-2020-0556 — CVSS 7.1 (high): Improper access control in subsystem for BlueZ before version 5.54 may allow an unauthenticated user to potentially enable escalation of…
CVE-2016-9797 — CVSS 5.3 (medium): In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" function in "tools/parser/l2cap.c" source file. This issue can be triggered…
CVE-2016-9798 — CVSS 5.3 (medium): In BlueZ 5.42, a use-after-free was identified in "conf_opt" function in "tools/parser/l2cap.c" source file. This issue can be triggered by…
CVE-2016-9802 — CVSS 5.3 (medium): In BlueZ 5.42, a buffer over-read was identified in "l2cap_packet" function in "monitor/packet.c" source file. This issue can be triggered…