PT-2023-8670 · Bluez+9 · Bluez+9

Michael Randrianantenaina

Published

2023-03-22

Updated

2025-07-08

CVE-2023-27349

CVSS v3.1

8.0

High

Vector

AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions BlueZ (affected versions not specified)

Description The issue is related to the improper validation of array indexes in the AVRCP protocol handling of BlueZ, which can result in a write past the end of an allocated buffer. This allows network-adjacent attackers to execute arbitrary code via Bluetooth on affected installations of BlueZ. User interaction is required to exploit this vulnerability, as the target must connect to a malicious device. The vulnerability can be leveraged to execute code in the context of root.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Improper Validation of Array Index

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-129

Related Identifiers

ALSA-2024:9413

ALSA-2025:4043

BDU:2024-01454

CESA-2025_4043

CVE-2023-27349

DLA-3820-1

DLA-3879-1

INFSA-2024_9413

INFSA-2025_4043

OESA-2023-1249

OPENSUSE-SU-2023_2613-1

OPENSUSE-SU-2024:13128-1

RHSA-2024:9413

RHSA-2024_9413

RHSA-2025:4043

RHSA-2025_4043

RLSA-2024:9413

SUSE-SU-2023:2533-1

SUSE-SU-2023:2545-1

SUSE-SU-2023:2546-1

SUSE-SU-2023:2562-1

SUSE-SU-2023:2605-1

SUSE-SU-2023:2613-1

SUSE-SU-2023_2533-1

SUSE-SU-2023_2545-1

SUSE-SU-2023_2546-1

SUSE-SU-2023_2562-1

SUSE-SU-2023_2605-1

SUSE-SU-2023_2613-1

USN-6809-1

ZDI-23-386

Affected Products

Almalinux

Astra Linux

Bluez

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

PT-2023-8670 · Bluez+9 · Bluez+9

CVE-2023-27349

Weakness Enumeration

Related Identifiers

Affected Products

References · 151