8.8 CVE-2020-12351

Exploit
 

Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
https://nvd.nist.gov/vuln/detail/CVE-2020-12351

Categories

CWE-20

References


 

CPE

cpe start end
Configuration 1
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 4.7.7 < 4.9.240
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 4.10 < 4.14.202
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 4.15 < 4.19.152
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 4.20 < 5.4.72
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.5 < 5.8.16
cpe:2.3:o:linux:linux_kernel:5.9.0:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.9.0:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.9.0:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.9.0:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.9.0:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.9.0:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.9.0:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.9.1:*:*:*:*:*:*:*


REMEDIATION




EXPLOITS


Exploit-db.com

id description date
No known exploits

POC Github

Url

Other Nist (github, ...)

Url
http://packetstormsecurity.com/files/162131/Linux-Kernel-5.4-BleedingTooth-Re...
http://packetstormsecurity.com/files/162131/Linux-Kernel-5.4-BleedingTooth-Re...


CAPEC


Common Attack Pattern Enumerations and Classifications

id description severity
No entry