{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-36033", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2024-05-17T13:50:33.161Z", "datePublished": "2024-05-30T15:23:48.022Z", "dateUpdated": "2025-05-04T09:10:58.247Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-05-04T09:10:58.247Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix info leak when fetching board id\n\nAdd the missing sanity check when fetching the board id to avoid leaking\nslab data when later requesting the firmware."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/bluetooth/btqca.c"], "versions": [{"version": "c3c1bd421db6187ee455995bfbf1ba16d98f5e6b", "lessThan": "a3dff121a7f5104c4c2d47edaa2351837ef645dd", "status": "affected", "versionType": "git"}, {"version": "ad643241d455fdd2516d46cfa54bd0c5e504fc86", "lessThan": "bcccdc947d2ca5972b1e92d0dea10803ddc08ceb", "status": "affected", "versionType": "git"}, {"version": "a381ee26d7c70dbc048cd17c4e0f40619118ff1f", "lessThan": "ba307abed5e09759845c735ba036f8c12f55b209", "status": "affected", "versionType": "git"}, {"version": "a7f8dedb4be2cc930a29af24427b885405ecd15d", "lessThan": "f30c37cb4549baf8377434892d520fe7769bdba7", "status": "affected", "versionType": "git"}, {"version": "a7f8dedb4be2cc930a29af24427b885405ecd15d", "lessThan": "0adcf6be1445ed50bfd4a451a7a782568f270197", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/bluetooth/btqca.c"], "versions": [{"version": "6.7", "status": "affected"}, {"version": "0", "lessThan": "6.7", "status": "unaffected", "versionType": "semver"}, {"version": "6.8.10", "lessThanOrEqual": "6.8.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.9", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.7", "versionEndExcluding": "6.8.10"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.7", "versionEndExcluding": "6.9"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/a3dff121a7f5104c4c2d47edaa2351837ef645dd"}, {"url": "https://git.kernel.org/stable/c/bcccdc947d2ca5972b1e92d0dea10803ddc08ceb"}, {"url": "https://git.kernel.org/stable/c/ba307abed5e09759845c735ba036f8c12f55b209"}, {"url": "https://git.kernel.org/stable/c/f30c37cb4549baf8377434892d520fe7769bdba7"}, {"url": "https://git.kernel.org/stable/c/0adcf6be1445ed50bfd4a451a7a782568f270197"}], "title": "Bluetooth: qca: fix info leak when fetching board id", "x_generator": {"engine": "bippy-1.2.0"}}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-36033", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-30T19:15:50.890550Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:47:44.337Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T03:30:12.274Z"}, "title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/a3dff121a7f5104c4c2d47edaa2351837ef645dd", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/bcccdc947d2ca5972b1e92d0dea10803ddc08ceb", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/ba307abed5e09759845c735ba036f8c12f55b209", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f30c37cb4549baf8377434892d520fe7769bdba7", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/0adcf6be1445ed50bfd4a451a7a782568f270197", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://git.kernel.org/stable/c/a3dff121a7f5104c4c2d47edaa2351837ef645dd", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/bcccdc947d2ca5972b1e92d0dea10803ddc08ceb", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/ba307abed5e09759845c735ba036f8c12f55b209", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/f30c37cb4549baf8377434892d520fe7769bdba7", "tags": ["x_transferred"]}, {"url": "https://git.kernel.org/stable/c/0adcf6be1445ed50bfd4a451a7a782568f270197", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T03:30:12.274Z"}}, {"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-36033", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-30T19:15:50.890550Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-30T19:15:54.677Z"}, "title": "CISA ADP Vulnrichment"}], "cna": {"title": "Bluetooth: qca: fix info leak when fetching board id", "affected": [{"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "c3c1bd421db6187ee455995bfbf1ba16d98f5e6b", "lessThan": "a3dff121a7f5104c4c2d47edaa2351837ef645dd", "versionType": "git"}, {"status": "affected", "version": "ad643241d455fdd2516d46cfa54bd0c5e504fc86", "lessThan": "bcccdc947d2ca5972b1e92d0dea10803ddc08ceb", "versionType": "git"}, {"status": "affected", "version": "a381ee26d7c70dbc048cd17c4e0f40619118ff1f", "lessThan": "ba307abed5e09759845c735ba036f8c12f55b209", "versionType": "git"}, {"status": "affected", "version": "a7f8dedb4be2cc930a29af24427b885405ecd15d", "lessThan": "f30c37cb4549baf8377434892d520fe7769bdba7", "versionType": "git"}, {"status": "affected", "version": "a7f8dedb4be2cc930a29af24427b885405ecd15d", "lessThan": "0adcf6be1445ed50bfd4a451a7a782568f270197", "versionType": "git"}], "programFiles": ["drivers/bluetooth/btqca.c"], "defaultStatus": "unaffected"}, {"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "vendor": "Linux", "product": "Linux", "versions": [{"status": "affected", "version": "6.7"}, {"status": "unaffected", "version": "0", "lessThan": "6.7", "versionType": "semver"}, {"status": "unaffected", "version": "6.8.10", "versionType": "semver", "lessThanOrEqual": "6.8.*"}, {"status": "unaffected", "version": "6.9", "versionType": "original_commit_for_fix", "lessThanOrEqual": "*"}], "programFiles": ["drivers/bluetooth/btqca.c"], "defaultStatus": "affected"}], "references": [{"url": "https://git.kernel.org/stable/c/a3dff121a7f5104c4c2d47edaa2351837ef645dd"}, {"url": "https://git.kernel.org/stable/c/bcccdc947d2ca5972b1e92d0dea10803ddc08ceb"}, {"url": "https://git.kernel.org/stable/c/ba307abed5e09759845c735ba036f8c12f55b209"}, {"url": "https://git.kernel.org/stable/c/f30c37cb4549baf8377434892d520fe7769bdba7"}, {"url": "https://git.kernel.org/stable/c/0adcf6be1445ed50bfd4a451a7a782568f270197"}], "x_generator": {"engine": "bippy-1.2.0"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix info leak when fetching board id\n\nAdd the missing sanity check when fetching the board id to avoid leaking\nslab data when later requesting the firmware."}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "6.8.10", "versionStartIncluding": "6.7"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "6.9", "versionStartIncluding": "6.7"}], "operator": "OR"}]}], "providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-05-04T09:10:58.247Z"}}}, "cveMetadata": {"cveId": "CVE-2024-36033", "state": "PUBLISHED", "dateUpdated": "2025-05-04T09:10:58.247Z", "dateReserved": "2024-05-17T13:50:33.161Z", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "datePublished": "2024-05-30T15:23:48.022Z", "assignerShortName": "Linux"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "matchCriteriaId": "6A6B920C-8D8F-4130-86B4-AD334F4CF2E3", "versionEndExcluding": "6.8.10", "versionStartIncluding": "6.7", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc1:*:*:*:*:*:*", "matchCriteriaId": "22BEDD49-2C6D-402D-9DBF-6646F6ECD10B", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc2:*:*:*:*:*:*", "matchCriteriaId": "DF73CB2A-DFFD-46FB-9BFE-AA394F27EA37", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc3:*:*:*:*:*:*", "matchCriteriaId": "52048DDA-FC5A-4363-95A0-A6357B4D7F8C", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc4:*:*:*:*:*:*", "matchCriteriaId": "A06B2CCF-3F43-4FA9-8773-C83C3F5764B2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc5:*:*:*:*:*:*", "matchCriteriaId": "F850DCEC-E08B-4317-A33B-D2DCF39F601B", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc6:*:*:*:*:*:*", "matchCriteriaId": "91326417-E981-482E-A5A3-28BC1327521B", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.9:rc7:*:*:*:*:*:*", "matchCriteriaId": "DAECDCD8-F556-4606-8D7B-5C6D47A501F2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: qca: fix info leak when fetching board id\n\nAdd the missing sanity check when fetching the board id to avoid leaking\nslab data when later requesting the firmware."}, {"lang": "es", "value": "En el kernel de Linux, se resolvi\u00f3 la siguiente vulnerabilidad: Bluetooth: qca: corrige la fuga de informaci\u00f3n al obtener la identificaci\u00f3n de la placa. Agregue la verificaci\u00f3n de cordura que falta al recuperar la identificaci\u00f3n de la placa para evitar fugas de datos de losa cuando luego solicite el firmware."}], "id": "CVE-2024-36033", "lastModified": "2025-09-18T14:36:14.127", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.2, "source": "[email protected]", "type": "Primary"}]}, "published": "2024-05-30T16:15:11.567", "references": [{"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/0adcf6be1445ed50bfd4a451a7a782568f270197"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/a3dff121a7f5104c4c2d47edaa2351837ef645dd"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/ba307abed5e09759845c735ba036f8c12f55b209"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/bcccdc947d2ca5972b1e92d0dea10803ddc08ceb"}, {"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/f30c37cb4549baf8377434892d520fe7769bdba7"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/0adcf6be1445ed50bfd4a451a7a782568f270197"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/a3dff121a7f5104c4c2d47edaa2351837ef645dd"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/ba307abed5e09759845c735ba036f8c12f55b209"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/bcccdc947d2ca5972b1e92d0dea10803ddc08ceb"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://git.kernel.org/stable/c/f30c37cb4549baf8377434892d520fe7769bdba7"}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-668"}], "source": "[email protected]", "type": "Primary"}]}

{"bugzilla": {"description": "kernel: Bluetooth: qca: fix info leak when fetching board id", "id": "2284406", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284406"}, "csaw": false, "cvss3": {"cvss3_base_score": "2.3", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N", "status": "draft"}, "cwe": "CWE-200", "details": ["In the Linux kernel, the following vulnerability has been resolved:\nBluetooth: qca: fix info leak when fetching board id\nAdd the missing sanity check when fetching the board id to avoid leaking\nslab data when later requesting the firmware."], "name": "CVE-2024-36033", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2024-05-30T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-36033\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-36033\nhttps://lore.kernel.org/linux-cve-announce/2024053000-CVE-2024-36033-0dd9@gregkh/T"], "threat_severity": "Low"}