Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2020-0556

Date: March 12, 2020

Improper access control in subsystem for BlueZ before version 5.54 may allow an unauthenticated user to potentially enable escalation of privilege and denial of service via adjacent access

Severity Score

Related Resources (13)

https://access.redhat.com/security/cve/CVE-2020-0556
https://security.alpinelinux.org/vuln/CVE-2020-0556
https://usn.ubuntu.com/4311-1/
https://people.canonical.com/~ubuntu-security/cve/CVE-2020-0556
https://security.gentoo.org/glsa/202003-49
http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00055.html
https://lists.debian.org/debian-lts-announce/2020/06/msg00008.html
http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00008.html
https://www.debian.org/security/2020/dsa-4647
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00352.html
https://nvd.nist.gov/vuln/detail/CVE-2020-0556
https://security-tracker.debian.org/tracker/CVE-2020-0556
https://www.mend.io/vulnerability-database/CVE-2020-0556

Severity Score

Weakness Type (CWE)

Insufficient Information

NVD-CWE-noinfo

Improper Privilege Management

CWE-269

CVSS v3.1

Base Score:
Attack Vector (AV): ADJACENT_NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): CHANGED
Confidentiality (C): LOW
Integrity (I): LOW
Availability (A): LOW

CVSS v2

Base Score:
Access Vector (AV): ADJACENT
Access Complexity (AC): LOW
Authentication (AU): NONE
Confidentiality (C): PARTIAL
Integrity (I): PARTIAL
Availability (A): PARTIAL
Additional information:

Do you need more information?

Contact Us