CVE-2020-0069
- EPSS 0.74%
- Veröffentlicht 10.03.2020 20:15:21
- Zuletzt bearbeitet 04.04.2025 13:01:47
In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution...
CVE-2020-0022
- EPSS 7.73%
- Veröffentlicht 13.02.2020 15:15:11
- Zuletzt bearbeitet 21.11.2024 04:52:45
In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction...
CVE-2019-9506
- EPSS 3.04%
- Veröffentlicht 14.08.2019 17:15:11
- Zuletzt bearbeitet 21.11.2024 04:51:45
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") tha...