Vulnerability Details : CVE-2020-24490
Improper buffer restrictions in BlueZ may allow an unauthenticated user to potentially enable denial of service via adjacent access. This affects all Linux kernel versions that support BlueZ.
Vulnerability category: Denial of service
Products affected by CVE-2020-24490
- cpe:2.3:a:bluez:bluez:-:*:*:*:*:*:*:*When used together with: Linux » Linux KernelWhen used together with: Linux » Linux KernelWhen used together with: Linux » Linux Kernel
Exploit prediction scoring system (EPSS) score for CVE-2020-24490
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 25 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2020-24490
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.3
|
LOW | AV:A/AC:L/Au:N/C:N/I:N/A:P |
6.5
|
2.9
|
NIST | |
6.5
|
MEDIUM | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
2.8
|
3.6
|
NIST |
References for CVE-2020-24490
-
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00435.html
INTEL-SA-00435Patch;Vendor Advisory
Jump to