CVE-2017-1000251high
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.
References
http://nvidia.custhelp.com/app/answers/detail/a_id/4561
http://www.debian.org/security/2017/dsa-3981
http://www.securityfocus.com/bid/100809
http://www.securitytracker.com/id/1039373
https://access.redhat.com/errata/RHSA-2017:2679
https://access.redhat.com/errata/RHSA-2017:2680
https://access.redhat.com/errata/RHSA-2017:2681
https://access.redhat.com/errata/RHSA-2017:2682
https://access.redhat.com/errata/RHSA-2017:2683
https://access.redhat.com/errata/RHSA-2017:2704
https://access.redhat.com/errata/RHSA-2017:2705
https://access.redhat.com/errata/RHSA-2017:2706
https://access.redhat.com/errata/RHSA-2017:2707
https://access.redhat.com/errata/RHSA-2017:2731
https://access.redhat.com/errata/RHSA-2017:2732
https://access.redhat.com/security/vulnerabilities/blueborne
https://github.com/torvalds/linux/commit/f2fcfcd670257236ebf2088bbdf26f6a8ef459fe
https://www.armis.com/blueborne
https://www.exploit-db.com/exploits/42762/
https://www.kb.cert.org/vuls/id/240311
https://www.synology.com/support/security/Synology_SA_17_52_BlueBorne
Details
Source: MITRE
Published: 2017-09-12
Updated: 2020-06-03
Type: CWE-787
Risk Information
CVSS v2
Base Score: 7.7
Vector: AV:A/AC:L/Au:S/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 5.1
Severity: HIGH
CVSS v3
Base Score: 8
Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 2.1
Severity: HIGH
Vulnerable Software
Configuration 1
OR
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from 2.6.32 to 4.13.1 (inclusive)
Configuration 2
OR
Configuration 3
AND
OR
cpe:2.3:a:nvidia:jetson_tk1:r21:*:*:*:*:*:*:*
cpe:2.3:a:nvidia:jetson_tk1:r24:*:*:*:*:*:*:*
OR
Configuration 4
OR
cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:6.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.7:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:6.5:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 127351 | NewStart CGSL MAIN 4.05 : kernel Multiple Vulnerabilities (NS-SA-2019-0113) | Nessus | NewStart CGSL Local Security Checks | high |
| 124986 | EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1533) | Nessus | Huawei Local Security Checks | high |
| 124821 | EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1498) | Nessus | Huawei Local Security Checks | high |
| 106469 | OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0015) (BlueBorne) (Meltdown) (Spectre) (Stack Clash) | Nessus | OracleVM Local Security Checks | critical |
| 105685 | SUSE SLES11 Security Update : kernel (SUSE-SU-2018:0040-1) (BlueBorne) (KRACK) (Meltdown) (Spectre) | Nessus | SuSE Local Security Checks | high |
| 105248 | OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0174) (BlueBorne) (Dirty COW) (Stack Clash) | Nessus | OracleVM Local Security Checks | high |
| 105247 | Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3659) | Nessus | Oracle Linux Local Security Checks | high |
| 105147 | OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0173) (BlueBorne) (Stack Clash) | Nessus | OracleVM Local Security Checks | high |
| 105145 | Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3658) | Nessus | Oracle Linux Local Security Checks | high |
| 105144 | Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3657) | Nessus | Oracle Linux Local Security Checks | high |
| 104703 | Virtuozzo 7 : readykernel-patch (VZA-2017-086) | Nessus | Virtuozzo Local Security Checks | high |
| 104578 | EulerOS 2.0 SP1 : kernel (EulerOS-SA-2017-1245) | Nessus | Huawei Local Security Checks | high |
| 104180 | Amazon Linux AMI : kernel (ALAS-2017-914) (BlueBorne) | Nessus | Amazon Linux Local Security Checks | high |
| 104097 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2797-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104096 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2796-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104095 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2793-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104094 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2792-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104088 | Oracle Linux 7 : kernel (ELSA-2017-2930-1) (BlueBorne) | Nessus | Oracle Linux Local Security Checks | high |
| 104029 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2790-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104028 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2788-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104027 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2787-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104026 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2786-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104025 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2785-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104024 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2784-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104023 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2783-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104022 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2782-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104021 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2781-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104020 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2780-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104019 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2779-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104018 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2778-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104017 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2777-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104016 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2776-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104014 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2774-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104013 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2773-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104012 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2772-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104011 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2771-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104010 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2770-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 104009 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2769-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 103468 | Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2017-085) | Nessus | Virtuozzo Local Security Checks | high |
| 103415 | SUSE SLES11 Security Update : kernel (SUSE-SU-2017:2548-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 103404 | OracleVM 3.3 : Unbreakable / etc (OVMSA-2017-0152) (BlueBorne) (Stack Clash) | Nessus | OracleVM Local Security Checks | high |
| 103403 | OracleVM 3.4 : Unbreakable / etc (OVMSA-2017-0151) (BlueBorne) | Nessus | OracleVM Local Security Checks | high |
| 103402 | Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2017-3622) | Nessus | Oracle Linux Local Security Checks | high |
| 103401 | Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3621) | Nessus | Oracle Linux Local Security Checks | high |
| 103394 | Fedora 25 : kernel (2017-e07d7fb18e) (BlueBorne) | Nessus | Fedora Local Security Checks | high |
| 103371 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2534-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 103365 | Debian DSA-3981-1 : linux - security update (BlueBorne) (Stack Clash) | Nessus | Debian Local Security Checks | high |
| 103363 | Debian DLA-1099-1 : linux security update (BlueBorne) (Stack Clash) | Nessus | Debian Local Security Checks | high |
| 103348 | Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2017-3620) | Nessus | Oracle Linux Local Security Checks | high |
| 103326 | Ubuntu 14.04 LTS : linux vulnerabilities (USN-3422-1) (BlueBorne) | Nessus | Ubuntu Local Security Checks | high |
| 103324 | Ubuntu 14.04 LTS : linux-lts-xenial vulnerabilities (USN-3420-2) (BlueBorne) | Nessus | Ubuntu Local Security Checks | critical |
| 103323 | Ubuntu 16.04 LTS : linux, linux-aws, linux-gke, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities (USN-3420-1) (BlueBorne) | Nessus | Ubuntu Local Security Checks | critical |
| 103322 | Ubuntu 16.04 LTS : linux-hwe vulnerabilities (USN-3419-2) (BlueBorne) | Nessus | Ubuntu Local Security Checks | high |
| 103321 | Ubuntu 17.04 : linux, linux-raspi2 vulnerabilities (USN-3419-1) (BlueBorne) | Nessus | Ubuntu Local Security Checks | high |
| 103318 | SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:2523-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 103316 | SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2017:2521-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 103288 | openSUSE Security Update : the Linux Kernel (openSUSE-2017-1063) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 103287 | openSUSE Security Update : the Linux Kernel (openSUSE-2017-1062) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 103264 | Fedora 26 : kernel (2017-7369ea045c) (BlueBorne) | Nessus | Fedora Local Security Checks | high |
| 103256 | Slackware 14.1 / 14.2 / current : kernel (SSA:2017-258-02) (BlueBorne) | Nessus | Slackware Local Security Checks | high |
| 103245 | SUSE SLES12 Security Update : kernel (SUSE-SU-2017:2459-1) (BlueBorne) | Nessus | SuSE Local Security Checks | high |
| 103243 | RHEL 6 : kernel (RHSA-2017:2732) (BlueBorne) | Nessus | Red Hat Local Security Checks | critical |
| 103242 | RHEL 6 : kernel (RHSA-2017:2731) (BlueBorne) | Nessus | Red Hat Local Security Checks | high |
| 103239 | RHEL 6 : MRG (RHSA-2017:2705) (BlueBorne) | Nessus | Red Hat Local Security Checks | high |
| 103208 | RHEL 6 : kernel (RHSA-2017:2707) (BlueBorne) | Nessus | Red Hat Local Security Checks | high |
| 103207 | RHEL 7 : kernel (RHSA-2017:2706) (BlueBorne) | Nessus | Red Hat Local Security Checks | high |
| 103206 | RHEL 7 : kernel-rt (RHSA-2017:2704) (BlueBorne) | Nessus | Red Hat Local Security Checks | high |
| 103196 | CentOS 7 : kernel (CESA-2017:2679) (BlueBorne) | Nessus | CentOS Local Security Checks | high |
| 103175 | Scientific Linux Security Update : kernel on SL7.x x86_64 (20170912) (BlueBorne) | Nessus | Scientific Linux Local Security Checks | high |
| 103174 | Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20170912) (BlueBorne) | Nessus | Scientific Linux Local Security Checks | high |
| 103171 | RHEL 6 : kernel (RHSA-2017:2683) (BlueBorne) | Nessus | Red Hat Local Security Checks | high |
| 103170 | RHEL 6 : kernel (RHSA-2017:2682) (BlueBorne) | Nessus | Red Hat Local Security Checks | high |
| 103169 | RHEL 6 : kernel (RHSA-2017:2681) (BlueBorne) | Nessus | Red Hat Local Security Checks | high |
| 103168 | RHEL 7 : kernel (RHSA-2017:2680) (BlueBorne) | Nessus | Red Hat Local Security Checks | high |
| 103167 | RHEL 7 : kernel (RHSA-2017:2679) (BlueBorne) | Nessus | Red Hat Local Security Checks | high |
| 103165 | Oracle Linux 6 : kernel (ELSA-2017-2681) | Nessus | Oracle Linux Local Security Checks | high |
| 103164 | Oracle Linux 7 : kernel (ELSA-2017-2679) | Nessus | Oracle Linux Local Security Checks | high |
| 103144 | CentOS 6 : kernel (CESA-2017:2681) (BlueBorne) | Nessus | CentOS Local Security Checks | high |