CVE-2020-12352

MEDIUM

Linux Kernel 5.4-5.4.71 - Unauthenticated Information Disclosure via BlueZ Access Control

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-12352. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit targets CVE-2020-12352, a Linux kernel Bluetooth vulnerability (BleedingTooth), achieving zero-click RCE via heap manipulation and kernel address leakage. It uses L2CAP and HCI sockets to trigger the vulnerability and execute arbitrary commands via a reverse shell.

Description

Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.

Exploits (1)

exploitdb WORKING POC
by Google Security Research · cremotelinux
https://www.exploit-db.com/exploits/49754

This exploit targets CVE-2020-12352, a Linux kernel Bluetooth vulnerability (BleedingTooth), achieving zero-click RCE via heap manipulation and kernel address leakage. It uses L2CAP and HCI sockets to trigger the vulnerability and execute arbitrary commands via a reverse shell.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Linux Kernel 5.4.0-48-generic (Ubuntu)
No auth needed
Prerequisites: Bluetooth enabled on target · Physical proximity or prior pairing · Kernel version 5.4.0-48-generic
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Scores

CVSS v3 6.5
EPSS 0.0239
EPSS Percentile 85.4%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-909
Status published
Products (1)
linux/linux_kernel 5.4 - 5.4.72
Published Nov 23, 2020
Tracked Since Feb 18, 2026