Lucene search
HistoryMar 16, 2023 - 9:15 p.m.
CVE-2023-21452
cve-2023-21452
bluetooth
smr mar-2023
security vulnerability
implicit intent
mac address
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4.1 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.2%
Improper usage of implicit intent in Bluetooth prior to SMR Mar-2023 Release 1 allows attacker to get MAC address of connected device.
Affected configurations
Node
samsungandroidMatch11.0-
ORsamsungandroidMatch11.0smr-apr-2021-r1
ORsamsungandroidMatch11.0smr-apr-2022-r1
ORsamsungandroidMatch11.0smr-aug-2021-r1
ORsamsungandroidMatch11.0smr-aug-2022-r1
ORsamsungandroidMatch11.0smr-dec-2020-r1
ORsamsungandroidMatch11.0smr-dec-2021-r1
ORsamsungandroidMatch11.0smr-dec-2022-r1
ORsamsungandroidMatch11.0smr-feb-2021-r1
ORsamsungandroidMatch11.0smr-feb-2022-r1
ORsamsungandroidMatch11.0smr-feb-2023-r1
ORsamsungandroidMatch11.0smr-jan-2021-r1
ORsamsungandroidMatch11.0smr-jan-2022-r1
ORsamsungandroidMatch11.0smr-jul-2021-r1
ORsamsungandroidMatch11.0smr-jul-2022-r1
ORsamsungandroidMatch11.0smr-jun-2021-r1
ORsamsungandroidMatch11.0smr-jun-2022-r1
ORsamsungandroidMatch11.0smr-mar-2021-r1
ORsamsungandroidMatch11.0smr-mar-2022-r1
ORsamsungandroidMatch11.0smr-may-2021-r1
ORsamsungandroidMatch11.0smr-may-2022-r1
ORsamsungandroidMatch11.0smr-nov-2021-r1
ORsamsungandroidMatch11.0smr-nov-2022-r1
ORsamsungandroidMatch11.0smr-oct-2021-r1
ORsamsungandroidMatch11.0smr-oct-2022-r1
ORsamsungandroidMatch11.0smr-sep-2021-r1
ORsamsungandroidMatch11.0smr-sep-2022-r1
ORsamsungandroidMatch12.0-
ORsamsungandroidMatch12.0smr-apr-2022-r1
ORsamsungandroidMatch12.0smr-aug-2022-r1
ORsamsungandroidMatch12.0smr-dec-2021-r1
ORsamsungandroidMatch12.0smr-dec-2022-r1
ORsamsungandroidMatch12.0smr-feb-2022-r1
ORsamsungandroidMatch12.0smr-feb-2023-r1
ORsamsungandroidMatch12.0smr-jan-2022-r1
ORsamsungandroidMatch12.0smr-jul-2022-r1
ORsamsungandroidMatch12.0smr-jun-2022-r1
ORsamsungandroidMatch12.0smr-mar-2022-r1
ORsamsungandroidMatch12.0smr-may-2022-r1
ORsamsungandroidMatch12.0smr-nov-2021-r1
ORsamsungandroidMatch12.0smr-nov-2022-r1
ORsamsungandroidMatch12.0smr-oct-2022-r1
ORsamsungandroidMatch12.0smr-sep-2022-r1
ORsamsungandroidMatch13.0smr-dec-2022-r1
ORsamsungandroidMatch13.0smr-feb-2023-r1
ORsamsungandroidMatch13.0smr-jan-2023-r1
ORsamsungandroidMatch13.0smr-nov-2022-r1
ORsamsungandroidMatch13.0smr-oct-2022-r1
| CPE | Name | Operator | Version |
|---|---|---|---|
| samsung:android | samsung android | eq | 11.0 |
| samsung:android | samsung android | eq | 12.0 |
| samsung:android | samsung android | eq | 13.0 |
CNA Affected
[
{
"vendor": "Samsung Mobile",
"product": "Samsung Mobile Devices",
"versions": [
{
"version": "Android 11, 12, 13",
"status": "affected",
"lessThan": "SMR Mar-2023 Release 1",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
CVE-2023-21452
2023-03-16 00:00:00
prion
prion
Design/Logic Flaw
2023-03-16 21:15:00
nvd
nvd
CVE-2023-21452
2023-03-16 21:15:11
3.3 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4.1 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.2%
Related for CVE-2023-21452