Lucene search
MitreCVE-2022-39176HistorySep 02, 2022 - 4:15 a.m.
CVE-2022-39176
2022-09-0204:15:11
mitre
web.nvd.nist.gov
69
15
bluez
cve-2022-39176
information security
vulnerability
nvd
CVSS3
8.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.2
Confidence
High
EPSS
0.001
Percentile
29.8%
BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate params_len.
Affected configurations
Node
bluezbluezRange<5.59
Node
canonicalubuntu_linuxMatch18.04lts
ORcanonicalubuntu_linuxMatch20.04lts
Node
debiandebian_linuxMatch10.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bluez | bluez | * | cpe:2.3:a:bluez:bluez:*:*:*:*:*:*:*:* |
| canonical | ubuntu_linux | 18.04 | cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* |
| canonical | ubuntu_linux | 20.04 | cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:* |
| debian | debian_linux | 10.0 | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* |
References
Social References
More
Related
alpinelinux
alpinelinux
CVE-2022-39176
2022-09-02 04:15:00
veracode
veracode
Information Disclosure
2022-09-16 19:22:44
debiancve
debiancve
CVE-2022-39176
2022-09-02 04:15:11
nvd
nvd
CVE-2022-39176
2022-09-02 04:15:11
cnvd
cnvd
BlueZ input validation error vulnerability
2022-09-06 00:00:00
redhatcve
redhatcve
CVE-2022-39176
2022-09-13 11:14:15
prion
prion
Design/Logic Flaw
2022-09-02 04:15:00
osv
osv
CVE-2022-39176
2022-09-02 04:15:11
bluez - security update
2022-10-24 00:00:00
bluez - security update
2024-09-07 00:00:00
cvelist
cvelist
CVE-2022-39176
2022-09-02 00:00:00
nessus
nessus
EulerOS Virtualization 3.0.6.6 : bluez (EulerOS-SA-2023-2406)
2023-07-26 00:00:00
SUSE SLES15 Security Update : bluez (SUSE-SU-2023:0155-1)
2023-01-27 00:00:00
EulerOS 2.0 SP5 : bluez (EulerOS-SA-2023-1491)
2023-03-08 00:00:00
ubuntucve
ubuntucve
CVE-2022-39177
2022-09-02 00:00:00
CVE-2022-39176
2022-09-02 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:0156-1)
2023-01-27 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0168-1)
2023-01-27 00:00:00
Huawei EulerOS: Security Advisory for bluez (EulerOS-SA-2023-2406)
2023-07-25 00:00:00
amazon
amazon
Important: bluez
2022-12-01 20:31:00
photon
photon
Important Photon OS Security Update - PHSA-2022-3.0-0453
2022-09-17 00:00:00
Important Photon OS Security Update - PHSA-2022-0245
2022-09-15 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0245
2022-09-15 00:00:00
debian
debian
[SECURITY] [DLA 3157-1] bluez security update
2022-10-24 10:50:09
CVSS3
8.8
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.2
Confidence
High
EPSS
0.001
Percentile
29.8%
Related for CVE-2022-39176