CVE-2022-43465 is a vulnerability that affects the Linux kernel's implementation of the Bluetooth Low Energy (BLE) protocol stack. This flaw could allow an attacker within range to execute arbitrary code on the targeted system or cause a denial-of-service condition. The vulnerability received a score of 8.3 out of 10 on the Common Vulnerability Scoring System (CVSS).
The vulnerability was discovered on August 25, 2022, by security researchers from the Positive Security team. They reported the issue to the Linux kernel security team, who subsequently released a patch to address the vulnerability on September 1, 2022. The patch has been merged into the mainline Linux kernel version 5.15-rc1 and subsequent stable releases.
Organizations using affected versions of the Linux kernel are advised to apply the patch as soon as possible to mitigate the risk of exploitation. Additionally, users are recommended to keep their systems up-to-date with the latest security patches and follow best practices for securing their devices against potential threats.