CVE-2020-0556

HIGH7.1EPSS 0.16%

bluez - security update

Published: 3/12/2020Modified: 4/28/2026

Description

Improper access control in subsystem for BlueZ before version 5.54 may allow an unauthenticated user to potentially enable escalation of privilege and denial of service via adjacent access

Affected packages (4)

Alpine/bluezfrom 0, < 5.50-r4
Debian/bluezfrom 0, < 5.50-1.1
Debian/bluezfrom 0, < 5.43-2+deb9u2~deb8u1
Debian/bluezfrom 0, < 5.43-2+deb9u2

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH7.1	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

References (2)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2020-0556
ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2020-0556