6.5 CVE-2020-12352

Exploit
 

Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.
https://nvd.nist.gov/vuln/detail/CVE-2020-12352

Categories

CWE-909

References


 

CPE

cpe start end
Configuration 1
AND
   cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.4 < 5.4.72
   cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.8.0 < 5.8.16
   cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* >= 5.9.0 <= 5.9.13
  Running on/with
  cpe:2.3:a:bluez:bluez:*:*:*:*:*:*:*:*


REMEDIATION




EXPLOITS


Exploit-db.com

id description date
No known exploits

POC Github

Url

Other Nist (github, ...)

Url
http://packetstormsecurity.com/files/161229/Kernel-Live-Patch-Security-Notice...
http://packetstormsecurity.com/files/161229/Kernel-Live-Patch-Security-Notice...


CAPEC


Common Attack Pattern Enumerations and Classifications

id description severity
No entry