← back
CVE-2019-10207

CVE-2019-10207

CVSS 4.7 MEDIUMEPSS 0.9%CWE-476
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 4.7EPSS 0.9%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
25 Nov 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A flaw was found in the Linux kernel's Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially crafted ioctl function call and cause the system to crash.
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected products
Red Hat · kernel

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10207https://security.netapp.com/advisory/ntap-20200103-0001/