HOMEVULNERABILITIESCVE-2026-43062
HIGH

CVE-2026-43062

Published: May 5, 2026· Updated: May 8, 2026

7.1
CVSS v3.1
EPSS:0.02%probability of exploitation in 30 daysPercentile:6.8th

Official Description

In the Linux kernel, the following vulnerability has been resolved:

Bluetooth: L2CAP: Fix type confusion in l2cap_ecred_reconf_rsp()

l2cap_ecred_reconf_rsp() casts the incoming data to struct

l2cap_ecred_conn_rsp (the ECRED *connection* response, 8 bytes with

result at offset 6) instead of struct l2cap_ecred_reconf_rsp (2 bytes

with result at offset 0).

This causes two problems:

- The sizeof(*rsp) length check requires 8 bytes instead of the

correct 2, so valid L2CAP_ECRED_RECONF_RSP packets are rejected

with -EPROTO.

- rsp->result reads from offset 6 instead of offset 0, returning

wrong data when the packet is large enough to pass the check.

Fix by using the correct type. Also pass the already byte-swapped

result variable to BT_DBG instead of the raw __le16 field.

NVD Source

Technical Analysis

CVE-2026-43062 requires adjacent network access, limiting remote exploitation but still posing risk in shared or local network environments.

The vulnerability requires no privileges and no user interaction, making it a prime target for automated exploitation campaigns and worm-like propagation.

A successful exploit results in full integrity compromise (data manipulation), with a CVSS base score of 7.1.

CVSS v3.1 Vector Breakdown

Exploitability
Attack VectorAdjacent
Attack ComplexityLow
Privileges Req.None
User InteractionNone
ScopeUnchanged
Impact
ConfidentialityNone
IntegrityHigh
AvailabilityLow
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L

Affected Vendors & Products

Mentioned vendors (from description):
Linux
CPE data not yet available in NVD for this CVE.

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

All References (8)

Quick Facts

CVE IDCVE-2026-43062
CVSS Score7.1 / 10
SeverityHIGH
CISA KEVNo
EPSS (30d)0.02%
PublishedMay 5, 2026

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2026-43062 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.