Vulnerabilities > CVE-2022-39176

047910
CVSS 8.8 - HIGH
Attack vector
ADJACENT_NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
low complexity
bluez
canonical
debian
NVD
Published: 2022-09-02
Updated: 2022-11-07

Summary

BlueZ before 5.59 allows physically proximate attackers to obtain sensitive information because profiles/audio/avrcp.c does not validate params_len.

Vulnerable Configurations

Part Description Count
Application
Bluez
162
OS
Canonical
2
OS
Debian
1

References