{"id":"CVE-2023-2002","details":"A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hci_sock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availability of Bluetooth communication.","modified":"2026-03-15T22:45:46.867789Z","published":"2023-05-26T17:15:14.113Z","related":["ALSA-2023:3708","ALSA-2023:3723","ALSA-2023:5244","MGASA-2023-0166","MGASA-2023-0173","SUSE-SU-2023:2500-1","SUSE-SU-2023:2646-1","SUSE-SU-2023:2653-1","SUSE-SU-2023:2782-1","SUSE-SU-2023:2804-1","SUSE-SU-2023:2808-1","SUSE-SU-2023:2809-1","SUSE-SU-2023:2810-1","SUSE-SU-2023:2822-1","SUSE-SU-2023:2830-1","SUSE-SU-2023:2834-1","SUSE-SU-2023:2859-1","SUSE-SU-2023:2871-1","SUSE-SU-2023:3035-1","SUSE-SU-2023:3036-1","SUSE-SU-2023:3046-1","SUSE-SU-2023:3055-1","SUSE-SU-2023:3063-1","SUSE-SU-2023:3069-1","SUSE-SU-2023:3073-1","SUSE-SU-2023:3075-1","SUSE-SU-2023:3076-1","SUSE-SU-2023:3079-1","SUSE-SU-2023:3081-1","SUSE-SU-2023:3083-1","SUSE-SU-2023:3104-1","SUSE-SU-2023:3107-1","SUSE-SU-2023:3111-1","SUSE-SU-2023:3116-1","SUSE-SU-2023:3153-1"],"references":[{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20240202-0004/"},{"type":"ADVISORY","url":"https://www.debian.org/security/2023/dsa-5480"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html"},{"type":"EVIDENCE","url":"https://www.openwall.com/lists/oss-security/2023/04/16/3"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"6.4"}]},{"events":[{"introduced":"0"},{"last_affected":"10.0"}]},{"events":[{"introduced":"0"},{"last_affected":"11.0"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-2002.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H"}]}