CVE-2026-42975 in Windowsinfo

Summary

by MITRE • 07/14/2026

Heap-based buffer overflow in Windows Bluetooth Port Driver allows an unauthorized attacker to execute code over an adjacent network.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Analysis

by VulDB Data Team • 07/15/2026

This vulnerability represents a critical heap-based buffer overflow within the Windows Bluetooth Port Driver component that enables remote code execution when exploited by an unauthenticated attacker within network proximity. The flaw exists in the driver's handling of malformed Bluetooth packets or data structures, specifically when processing incoming Bluetooth communication traffic through the virtual serial port interface that the Bluetooth driver provides to applications and system components. The vulnerability manifests when the driver fails to properly validate input data length before copying it into a fixed-size heap-allocated buffer, creating a condition where an attacker can overwrite adjacent memory locations with malicious data. This particular flaw is classified under CWE-121 as a heap-based buffer overflow, which occurs when insufficient bounds checking allows attackers to write beyond allocated memory boundaries. The attack vector requires proximity to the target system since Bluetooth communication typically operates within limited physical range, making this vulnerability particularly concerning for environments where wireless devices are frequently connected or where attackers can position themselves within Bluetooth range. The operational impact of this vulnerability extends beyond simple privilege escalation as it allows arbitrary code execution with kernel-level privileges, potentially enabling complete system compromise and lateral movement throughout the network. Attackers can leverage this vulnerability by crafting specially malformed Bluetooth packets that when processed by the vulnerable driver cause the buffer overflow condition, which can then be exploited to inject and execute malicious code within the kernel context. The exploitation process typically involves careful memory layout manipulation to overwrite function pointers or return addresses, effectively hijacking the execution flow of the Bluetooth driver service. This vulnerability aligns with ATT&CK technique T1059.007 for command and scripting interpreter and T1068 for exploit for privilege escalation, as it provides a kernel-level code execution primitive that can be used to establish persistent access or escalate privileges beyond what is normally possible. The affected Windows versions include various releases from windows 10 through windows 11, with the specific driver components being vulnerable across multiple hardware platforms and Bluetooth implementations. Mitigation strategies should include immediate patching of affected systems through Microsoft security updates, network segmentation to limit Bluetooth device access, disabling unnecessary Bluetooth services, and implementing network monitoring to detect anomalous Bluetooth traffic patterns that may indicate exploitation attempts. Additionally, organizations should consider deploying endpoint detection and response solutions with behavioral analysis capabilities to identify potential exploitation attempts targeting this specific driver vulnerability.

Responsible

Microsoft

Reservation

05/01/2026

Disclosure

07/14/2026

Moderation

accepted

CPE

ready

EPSS

0.00000

KEV

no

Activities

low

Sources

Interested in the pricing of exploits?

See the underground prices here!