CVE-2017-1000251

ENISA EUVD: EUVD-2017-1512 ↗
✓ Confirmed 0-Day
Triaged: March 5, 2026 3 articles Published: 2017-09-12
VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗

EPSS Score

Source: FIRST.org · 2026-05-23
3.03%
probability
This CVE has a 3.03% probability of being exploited in the next 30 days.
0% Top 86.8th percentile of all CVEs 100%

CVSS v3.1

Source: NVD
8.0
HIGH
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2 (legacy)

7.7
HIGH
Access Vector
Adjacent Network
Access Complexity
Low
Authentication
Single
Confidentiality
Complete
Integrity
Complete
Availability
Complete
AV:A/AC:L/Au:S/C:C/I:C/A:C

Description

VulnerabilityLookup (CNA)
The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.

Affected Products

n/a
n/a

Attack Intelligence

Exploits & PoC

hayzamjs/Blueborne-CVE-2017-1000251

Blueborne CVE-2017-1000251 PoC for linux machines

18 2023-03-10
sgxgsx/blueborne-CVE-2017-1000251

Linux Kernel < 4.13.1 - BlueTooth Buffer Overflow (PoC) BlueBorne - Proof of Concept - Unarmed/Unweaponized - DoS (Crash) only

6 2024-07-03
own2pwn/blueborne-CVE-2017-1000251-POC
5 2017-10-01
tlatkdgus1/blueborne-CVE-2017-1000251

clone

0 2017-09-28
istanescu/CVE-2017-1000251_Exploit

PoC exploit for CVE-2017-1000251 (modified)

0 2022-08-15
5 repos — triés par ⭐ Rechercher sur GitHub ↗
https://access.redhat.com/errata/RHSA-2017:2732
vendor-advisory x_refsource_REDHAT
https://www.exploit-db.com/exploits/42762/
exploit x_refsource_EXPLOIT-DB
https://access.redhat.com/errata/RHSA-2017:2705
vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2683
vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2704
vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2017:2682
vendor-advisory x_refsource_REDHAT

Signal Intelligence

Confidence
75%
EPSS 3.03%
CVSS v3.1 8.0
Mentions 3
Last Seen Sep 13, 2017

CNA Information

CNA Assigner
mitre

Analyst Note

CVE-2017-1000251 is the BlueZ stack overflow vulnerability (BlueBorne attack) exploited in the wild in 2017. The CVE was published September 12, 2017, and exploitation occurred contemporaneously with vulnerability disclosure. CERT-EU advisory confirms active exploitation. Timing aligns with zero-day criteria despite lack of explicit 'zero-day' terminology in limited source material.

Triage Info

Decided atMar 05, 2026
Published DateSep 12, 2017