Skip to main content

Node Bluetooth Serial Port

1 CVEs product

Monthly

CVE-2023-26109 npm CRITICAL POC Act Now

All versions of the package node-bluetooth-serial-port are vulnerable to Buffer Overflow via the findSerialPortChannel method due to improper user input length validation. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Node Bluetooth Serial Port
NVD
CVSS 3.1
9.8
EPSS
0.7%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

All versions of the package node-bluetooth-serial-port are vulnerable to Buffer Overflow via the findSerialPortChannel method due to improper user input length validation. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Node Bluetooth Serial Port
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy