Home CVE Database CVE-2017-1000250

CVE-2017-1000250

Description

All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to an information disclosure vulnerability which allows remote attackers to obtain sensitive information from the bluetoothd process memory. This vulnerability lies in the processing of SDP search attribute requests.

Priority: LOW
CVSS v3: 6.5
Publish Date: Sep 12, 2017
Related ID: --
CVSS v2: Medium
Modified Date: Sep 12, 2017

Find out more about CVE-2017-1000250 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

bluez

Live chat
Online