CVE-2020-12352

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.

References

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00435.html?wapkw=CVE-2020-12351

http://packetstormsecurity.com/files/161229/Kernel-Live-Patch-Security-Notice-LSN-0074-1.html

http://packetstormsecurity.com/files/162131/Linux-Kernel-5.4-BleedingTooth-Remote-Code-Execution.html

Details

Source: MITRE

Published: 2020-11-23

Updated: 2021-07-21

Type: CWE-200

Risk Information

CVSS v2

Base Score: 3.3

Vector: AV:A/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 6.5

Severity: LOW

CVSS v3

Base Score: 6.5

Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 2.8

Severity: MEDIUM

Vulnerable Software

Configuration 1

AND

OR

cpe:2.3:a:bluez:bluez:-:*:*:*:*:*:*:*

OR

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*

Tenable Plugins

View all (58 total)

IDNameProductFamilySeverity
151464OracleVM 3.4 : Unbreakable / etc (OVMSA-2021-0022)NessusOracleVM Local Security Checks
medium
151281Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2021-9346)NessusOracle Linux Local Security Checks
medium
147690EulerOS Virtualization 2.9.0 : kernel (EulerOS-SA-2021-1642)NessusHuawei Local Security Checks
high
147559EulerOS Virtualization 3.0.6.6 : kernel (EulerOS-SA-2021-1454)NessusHuawei Local Security Checks
high
147512EulerOS Virtualization 2.9.1 : kernel (EulerOS-SA-2021-1604)NessusHuawei Local Security Checks
high
147318NewStart CGSL MAIN 6.02 : kernel Multiple Vulnerabilities (NS-SA-2021-0078)NessusNewStart CGSL Local Security Checks
high
146701EulerOS 2.0 SP2 : kernel (EulerOS-SA-2021-1311)NessusHuawei Local Security Checks
high
146282openSUSE Security Update : RT kernel (openSUSE-2021-242)NessusSuSE Local Security Checks
high
146181EulerOS 2.0 SP5 : kernel (EulerOS-SA-2021-1200)NessusHuawei Local Security Checks
high
145986CentOS 8 : kernel (CESA-2020:4286)NessusCentOS Local Security Checks
high
145201EulerOS 2.0 SP3 : kernel (EulerOS-SA-2021-1079)NessusHuawei Local Security Checks
high
144731EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2021-1039)NessusHuawei Local Security Checks
high
144210Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2020-5996)NessusOracle Linux Local Security Checks
high
144207Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2020-5995)NessusOracle Linux Local Security Checks
high
143875SUSE SLES15 Security Update : kernel (SUSE-SU-2020:3532-1)NessusSuSE Local Security Checks
high
143857SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3544-1)NessusSuSE Local Security Checks
high
143845SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2980-1)NessusSuSE Local Security Checks
high
143802SUSE SLES15 Security Update : kernel (SUSE-SU-2020:3513-1)NessusSuSE Local Security Checks
high
143780SUSE SLES15 Security Update : kernel (SUSE-SU-2020:3522-1)NessusSuSE Local Security Checks
high
143773SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3281-1)NessusSuSE Local Security Checks
high
143673SUSE SLES12 Security Update : kernel (SUSE-SU-2020:2981-1)NessusSuSE Local Security Checks
high
143654SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3501-1)NessusSuSE Local Security Checks
high
143639SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3503-1)NessusSuSE Local Security Checks
high
143615SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2020:2972-1)NessusSuSE Local Security Checks
high
143433Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4657-1)NessusUbuntu Local Security Checks
high
143398openSUSE Security Update : the Linux Kernel (openSUSE-2020-2112)NessusSuSE Local Security Checks
high
142978Amazon Linux AMI : kernel (ALAS-2020-1446)NessusAmazon Linux Local Security Checks
high
142722Amazon Linux 2 : kernel (ALAS-2020-1556)NessusAmazon Linux Local Security Checks
high
142674RHEL 7 : kernel (RHSA-2020:4991)NessusRed Hat Local Security Checks
medium
142673RHEL 7 : kernel (RHSA-2020:4990)NessusRed Hat Local Security Checks
medium
142656Photon OS 3.0: Linux PHSA-2020-3.0-0160NessusPhotonOS Local Security Checks
high
142331EulerOS 2.0 SP9 : kernel (EulerOS-SA-2020-2411)NessusHuawei Local Security Checks
high
142260EulerOS 2.0 SP9 : kernel (EulerOS-SA-2020-2429)NessusHuawei Local Security Checks
high
142176Debian DLA-2420-2 : linux regression updateNessusDebian Local Security Checks
high
142148EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-2311)NessusHuawei Local Security Checks
high
142052Debian DLA-2417-1 : linux-4.19 security updateNessusDebian Local Security Checks
high
141856Oracle Linux 7 : kernel (ELSA-2020-4276)NessusOracle Linux Local Security Checks
high
141789Slackware 14.2 : Slackware 14.2 kernel (SSA:2020-295-01)NessusSlackware Local Security Checks
high
141777Oracle Linux 8 : kernel (ELSA-2020-4286)NessusOracle Linux Local Security Checks
high
141741Scientific Linux Security Update : kernel on SL7.x x86_64 (20201020)NessusScientific Linux Local Security Checks
high
141628RHEL 7 : kernel (RHSA-2020:4276)NessusRed Hat Local Security Checks
high
141606RHEL 8 : kernel (RHSA-2020:4286)NessusRed Hat Local Security Checks
high
141603RHEL 8 : kernel-rt (RHSA-2020:4289)NessusRed Hat Local Security Checks
high
141581RHEL 8 : kernel (RHSA-2020:4288)NessusRed Hat Local Security Checks
high
141580RHEL 8 : kernel (RHSA-2020:4287)NessusRed Hat Local Security Checks
high
141577RHEL 7 : kernel-rt (RHSA-2020:4280)NessusRed Hat Local Security Checks
high
141559openSUSE Security Update : the Linux Kernel (openSUSE-2020-1698)NessusSuSE Local Security Checks
high
141552Debian DSA-4774-1 : linux - security updateNessusDebian Local Security Checks
high
141548RHEL 7 : kernel (RHSA-2020:4281)NessusRed Hat Local Security Checks
high
141547RHEL 7 : kernel (RHSA-2020:4277)NessusRed Hat Local Security Checks
high
141546RHEL 7 : kernel-alt (RHSA-2020:4279)NessusRed Hat Local Security Checks
high
141544Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4592-1)NessusUbuntu Local Security Checks
high
141541Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-4591-1)NessusUbuntu Local Security Checks
high
141540RHEL 7 : kernel (RHSA-2020:4278)NessusRed Hat Local Security Checks
high
141514openSUSE Security Update : the Linux Kernel (openSUSE-2020-1682)NessusSuSE Local Security Checks
high
141488Fedora 33 : kernel (2020-ce117eff51)NessusFedora Local Security Checks
high
141487Fedora 32 : kernel (2020-e288acda9a)NessusFedora Local Security Checks
high
141484Fedora 31 : kernel (2020-ad980d282f)NessusFedora Local Security Checks
high