Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bluetooth bluetooth core specification vulnerabilities and exploits
(subscribe to this query)
259
VMScore
CVE-2021-31615
Unencrypted Bluetooth Low Energy baseband links in Bluetooth Core Specifications 4.0 up to and including 5.2 may permit an adjacent device to inject a crafted packet during the receive window of the listening device before the transmitting device initiates its packet transmission...
Bluetooth Bluetooth Core Specification
NA
CVE-2020-35473
An information leakage vulnerability in the Bluetooth Low Energy advertisement scan response in Bluetooth Core Specifications 4.0 up to and including 5.2, and extended scan response in Bluetooth Core Specifications 5.0 up to and including 5.2, may be used to identify devices usin...
Bluetooth Bluetooth Core Specification
NA
CVE-2022-24695
Bluetooth Classic in Bluetooth Core Specification up to and including 5.3 does not properly conceal device information for Bluetooth transceivers in Non-Discoverable mode. By conducting an efficient over-the-air attack, an attacker can fully extract the permanent, unique Bluetoot...
Bluetooth Bluetooth Core Specification
NA
CVE-2022-25836
Bluetooth® Low Energy Pairing in Bluetooth Core Specification v4.0 through v5.3 may permit an unauthenticated MITM to acquire credentials with two pairing devices via adjacent access when the MITM negotiates Legacy Passkey Pairing with the pairing Initiator and Secure Connect...
Bluetooth Bluetooth Core Specification
NA
CVE-2022-25837
Bluetooth® Pairing in Bluetooth Core Specification v1.0B through v5.3 may permit an unauthenticated MITM to acquire credentials with two pairing devices via adjacent access when at least one device supports BR/EDR Secure Connections pairing and the other BR/EDR Legacy PIN cod...
Bluetooth Bluetooth Core Specification
384
VMScore
CVE-2020-15802
Devices supporting Bluetooth prior to 5.1 may allow man-in-the-middle attacks, aka BLURtooth. Cross Transport Key Derivation in Bluetooth Core Specification v4.2 and v5.0 may permit an unauthenticated user to establish a bonding with one transport, either LE or BR/EDR, and replac...
Bluetooth Bluetooth Core Specification
3 Github repositories
1 Article
259
VMScore
CVE-2020-26556
Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, able to conduct a successful brute-force attack on an insufficiently random AuthValue before the provisioning procedure times out, to complete authentication by leveraging Malleable Commitme...
Bluetooth Mesh Profile 1.0.0
Bluetooth Mesh Profile 1.0.1
Bluetooth Bluetooth Core Specification
384
VMScore
CVE-2020-10134
Pairing in Bluetooth® Core v5.2 and previous versions may permit an unauthenticated malicious user to acquire credentials with two pairing devices via adjacent access when the unauthenticated user initiates different pairing methods in each peer device and an end-user erroneo...
Bluetooth Bluetooth Core
428
VMScore
CVE-2020-10135
Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and previous versions may allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could...
Bluetooth Bluetooth Core
Opensuse Leap 15.1
4 Github repositories
427
VMScore
CVE-2020-26555
Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B up to and including 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN.
Bluetooth Bluetooth Core Specification
Fedoraproject Fedora 34
Intel Ax210 Firmware -
Intel Ax201 Firmware -
Intel Ax200 Firmware -
Intel Ac 9560 Firmware -
Intel Ac 9462 Firmware -
Intel Ac 9461 Firmware -
Intel Ac 9260 Firmware -
Intel Ac 8265 Firmware -
Intel Ac 8260 Firmware -
Intel Ac 3168 Firmware -
Intel Ac 7265 Firmware -
Intel Ac 3165 Firmware -
Intel Killer Wi-fi 6e Ax1675 Firmware -
Intel Killer Wi-fi 6 Ax1650 Firmware -
Intel Killer Ac 1550 Firmware -
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »