CVE-2020-12351

HIGH
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

References

http://packetstormsecurity.com/files/162131/Linux-Kernel-5.4-BleedingTooth-Remote-Code-Execution.html

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00435.html?wapkw=CVE-2020-12351

Details

Source: MITRE

Published: 2020-11-23

Updated: 2021-04-08

Type: CWE-20

Risk Information

CVSS v2

Base Score: 5.8

Vector: AV:A/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 6.5

Severity: MEDIUM

CVSS v3

Base Score: 8.8

Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 2.8

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions from 5.9.0 to 5.9.13 (inclusive)

Tenable Plugins

View all (46 total)

IDNameProductFamilySeverity
148041EulerOS 2.0 SP5 : kernel (EulerOS-SA-2021-1684)NessusHuawei Local Security Checks
high
147690EulerOS Virtualization 2.9.0 : kernel (EulerOS-SA-2021-1642)NessusHuawei Local Security Checks
high
147512EulerOS Virtualization 2.9.1 : kernel (EulerOS-SA-2021-1604)NessusHuawei Local Security Checks
high
147318NewStart CGSL MAIN 6.02 : kernel Multiple Vulnerabilities (NS-SA-2021-0078)NessusNewStart CGSL Local Security Checks
high
146282openSUSE Security Update : RT kernel (openSUSE-2021-242)NessusSuSE Local Security Checks
high
145986CentOS 8 : kernel (CESA-2020:4286)NessusCentOS Local Security Checks
high
144731EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2021-1039)NessusHuawei Local Security Checks
high
143875SUSE SLES15 Security Update : kernel (SUSE-SU-2020:3532-1)NessusSuSE Local Security Checks
high
143857SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3544-1)NessusSuSE Local Security Checks
high
143845SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2980-1)NessusSuSE Local Security Checks
high
143802SUSE SLES15 Security Update : kernel (SUSE-SU-2020:3513-1)NessusSuSE Local Security Checks
high
143780SUSE SLES15 Security Update : kernel (SUSE-SU-2020:3522-1)NessusSuSE Local Security Checks
high
143773SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3281-1)NessusSuSE Local Security Checks
high
143673SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2981-1)NessusSuSE Local Security Checks
high
143615SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2972-1)NessusSuSE Local Security Checks
high
143398openSUSE Security Update : the Linux Kernel (openSUSE-2020-2112)NessusSuSE Local Security Checks
high
142978Amazon Linux AMI : kernel (ALAS-2020-1446)NessusAmazon Linux Local Security Checks
high
142722Amazon Linux 2 : kernel (ALAS-2020-1556)NessusAmazon Linux Local Security Checks
high
142656Photon OS 3.0: Linux PHSA-2020-3.0-0160NessusPhotonOS Local Security Checks
high
142331EulerOS 2.0 SP9 : kernel (EulerOS-SA-2020-2411)NessusHuawei Local Security Checks
high
142260EulerOS 2.0 SP9 : kernel (EulerOS-SA-2020-2429)NessusHuawei Local Security Checks
high
142176Debian DLA-2420-2 : linux regression updateNessusDebian Local Security Checks
high
142148EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-2311)NessusHuawei Local Security Checks
high
142052Debian DLA-2417-1 : linux-4.19 security updateNessusDebian Local Security Checks
high
141856Oracle Linux 7 : kernel (ELSA-2020-4276)NessusOracle Linux Local Security Checks
high
141789Slackware 14.2 : Slackware 14.2 kernel (SSA:2020-295-01)NessusSlackware Local Security Checks
high
141777Oracle Linux 8 : kernel (ELSA-2020-4286)NessusOracle Linux Local Security Checks
high
141741Scientific Linux Security Update : kernel on SL7.x x86_64 (20201020)NessusScientific Linux Local Security Checks
high
141628RHEL 7 : kernel (RHSA-2020:4276)NessusRed Hat Local Security Checks
high
141606RHEL 8 : kernel (RHSA-2020:4286)NessusRed Hat Local Security Checks
high
141603RHEL 8 : kernel-rt (RHSA-2020:4289)NessusRed Hat Local Security Checks
high
141581RHEL 8 : kernel (RHSA-2020:4288)NessusRed Hat Local Security Checks
high
141580RHEL 8 : kernel (RHSA-2020:4287)NessusRed Hat Local Security Checks
high
141577RHEL 7 : kernel-rt (RHSA-2020:4280)NessusRed Hat Local Security Checks
high
141559openSUSE Security Update : the Linux Kernel (openSUSE-2020-1698)NessusSuSE Local Security Checks
high
141552Debian DSA-4774-1 : linux - security updateNessusDebian Local Security Checks
high
141548RHEL 7 : kernel (RHSA-2020:4281)NessusRed Hat Local Security Checks
high
141547RHEL 7 : kernel (RHSA-2020:4277)NessusRed Hat Local Security Checks
high
141546RHEL 7 : kernel-alt (RHSA-2020:4279)NessusRed Hat Local Security Checks
high
141544Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4592-1)NessusUbuntu Local Security Checks
high
141541Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-4591-1)NessusUbuntu Local Security Checks
high
141540RHEL 7 : kernel (RHSA-2020:4278)NessusRed Hat Local Security Checks
high
141514openSUSE Security Update : the Linux Kernel (openSUSE-2020-1682)NessusSuSE Local Security Checks
high
141488Fedora 33 : kernel (2020-ce117eff51)NessusFedora Local Security Checks
high
141487Fedora 32 : kernel (2020-e288acda9a)NessusFedora Local Security Checks
high
141484Fedora 31 : kernel (2020-ad980d282f)NessusFedora Local Security Checks
high