CVE-2015-8612
HIGHBlueman <2.0.3 - Privilege Escalation
Title source: llmDescription
The EnableNetwork method in the Network class in plugins/mechanism/Network.py in Blueman before 2.0.3 allows local users to gain privileges via the dhcp_handler argument.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubylocallinux
https://www.exploit-db.com/exploits/46186
metasploit
WORKING POC
EXCELLENT
by Sebastian Krahmer, bcoles · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/local/blueman_set_dhcp_handler_dbus_priv_esc.rb
References (10)
Scores
CVSS v3
8.4
EPSS
0.2311
EPSS Percentile
95.9%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-264
Status
published
Products (1)
blueman_project/blueman
< 2.0
Published
Jan 08, 2016
Tracked Since
Feb 18, 2026