This page lists publicly disclosed CVE vulnerabilities affecting bluez_project bluez (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2016-9918 | In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash. | [email protected] | 7.5 | 0.49% | 2016-12-08 | 2026-05-06 |
| CVE-2006-6899 | hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain control of the (1) Mouse and (2) Keyboard Human Interface Device (HID) via a certain configuration of two HID (PSM) endpoints, operating as a server, aka HidAttack. | [email protected] | 5.4 | 11.43% | 2006-12-31 | 2026-04-23 |
| CVE-2005-2547 | security.c in hcid for BlueZ 2.16, 2.17, and 2.18 allows remote attackers to execute arbitrary commands via shell metacharacters in the Bluetooth device name when invoking the PIN helper. | [email protected] | 7.5 | 1.14% | 2005-08-12 | 2026-04-16 |