Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
bluetoothd from bluez incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If a device is powered down while discoverable, it will be discoverable when powered on again. This could lead to inadvertent exposure of the bluetooth stack to physically nearby attackers.
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
bluez 安全漏洞
Vulnerability Description
BlueZ是一款使用C语言编写的蓝牙协议堆栈,它主要用于提供对核心蓝牙层和协议的支持。 bluez 存在安全漏洞,该漏洞源于bluez 的 bluetoothd 在设备断电时错误地保存适配器的可发现状态,并在通电时恢复了它。这可能会导致蓝牙堆栈无意中暴露给物理上接近的攻击者。
CVSS Information
N/A
Vulnerability Type
N/A