CVE-2024-8805: BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability
First published: Fri Nov 22 2024(Updated: )
BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the HID over GATT Profile. The issue results from the lack of authorization prior to allowing access to functionality. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-25177.
Credit: zdi-disclosures@trendmicro.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SUSE BlueZ | ||
| SUSE BlueZ | =5.77 | |
| debian/linux | <=5.10.223-1<=5.10.234-1 | 6.1.129-1 6.1.133-1 6.12.22-1 |
| debian/linux-6.1 | 6.1.129-1~deb11u1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.zerodayinitiative.com/advisories/ZDI-24-1229/
- https://patchwork.kernel.org/project/bluetooth/patch/20240912204458.3037144-1-luiz.dentz@gmail.com/
- https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/?id=370e38c32529e0899bb387a70d5d92dfb5a2b3c5
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8805
- https://nvd.nist.gov/vuln/detail/CVE-2024-8805
- https://launchpad.net/bugs/cve/CVE-2024-8805
- https://security-tracker.debian.org/tracker/CVE-2024-8805
- https://ubuntu.com/security/CVE-2024-8805
- https://git.kernel.org/linus/b25e11f978b63cb7857890edb3a698599cddb10e
Frequently Asked Questions
What is the severity of CVE-2024-8805?
CVE-2024-8805 has a critical severity due to the potential for remote code execution without authentication.
How do I fix CVE-2024-8805?
To mitigate CVE-2024-8805, it is recommended to update BlueZ to version 5.78 or later where the vulnerability is patched.
What types of attacks can be carried out using CVE-2024-8805?
Exploitation of CVE-2024-8805 allows attackers to execute arbitrary code, potentially compromising the system.
Who is affected by CVE-2024-8805?
CVE-2024-8805 affects installations of BlueZ version 5.77, specifically those using the HID over GATT Profile.
Is authentication required to exploit CVE-2024-8805?
Authentication is not required to exploit CVE-2024-8805, making it particularly dangerous.
- agent/weakness
- agent/title
- agent/first-publish-date
- agent/type
- agent/author
- collector/mitre-cve
- source/MITRE
- agent/trending
- agent/last-modified-date
- agent/severity
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/zdi-advisory
- source/ZDI
- alias/ZDI-24-1229
- alias/ZDI-CAN-25177
- alias/CVE-2024-8805
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- collector/usn-cve
- source/Ubuntu
- collector/security-tracker-debian
- source/Debian
- agent/source
- agent/references
- agent/softwarecombine
- agent/description
- agent/event
- agent/tags
- collector/launchpad-cve
- source/Launchpad
- collector/nvd-cve
- vendor/bluez
- canonical/suse bluez
- version/suse bluez/5.77
- package-manager/debian