Primary

Context

Realtek Bluetooth HCI Adaptor Link Following Vulnerability Leading to Privilege Escalation

Vulnerability

A link following vulnerability has been identified in the Realtek Bluetooth HCI Adaptor, affecting versions prior to 1.1.73.1. This vulnerability allows local attackers with regular privileges to create symbolic links that mimic the names of specific files. The adaptor then inadvertently deletes the files pointed to by these links. Attackers can exploit this arbitrary file deletion to escalate privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation.

Remediation

Users are advised to update the Bluetooth HCI Adaptor to version 1.1.73.1 or later.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Realtek Bluetooth HCI Adaptor Link Following Vulnerability Leading to Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating