Vulnerabilities > CVE-2021-3658 - Incorrect Authorization vulnerability in multiple products
Attack vector
ADJACENT_NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
bluetoothd from bluez incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If a device is powered down while discoverable, it will be discoverable when powered on again. This could lead to inadvertent exposure of the bluetooth stack to physically nearby attackers.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1984728
- https://bugzilla.redhat.com/show_bug.cgi?id=1984728
- https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=b497b5942a8beb8f89ca1c359c54ad67ec843055
- https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=b497b5942a8beb8f89ca1c359c54ad67ec843055
- https://github.com/bluez/bluez/commit/b497b5942a8beb8f89ca1c359c54ad67ec843055
- https://github.com/bluez/bluez/commit/b497b5942a8beb8f89ca1c359c54ad67ec843055
- https://gitlab.gnome.org/GNOME/gnome-bluetooth/-/issues/89
- https://gitlab.gnome.org/GNOME/gnome-bluetooth/-/issues/89
- https://security.netapp.com/advisory/ntap-20220407-0002/
- https://security.netapp.com/advisory/ntap-20220407-0002/