Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAppleCVELIST:CVE-2024-0230
HistoryJan 12, 2024 - 11:10 p.m.

CVE-2024-0230

2024-01-1223:10:45
apple
www.cve.org
cve-2024-0230
bluetooth pairing key extraction
accessory security

2.9 Low

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.8%

JSON

A session management issue was addressed with improved checks. This issue is fixed in Magic Keyboard Firmware Update 2.0.6. An attacker with physical access to the accessory may be able to extract its Bluetooth pairing key and monitor Bluetooth traffic.

CNA Affected

[
  {
    "vendor": "Apple",
    "product": "Magic Keyboard Firmware Update",
    "versions": [
      {
        "version": "unspecified",
        "status": "affected",
        "lessThan": "2.0.6",
        "versionType": "custom"
      }
    ]
  }
]

Related

nvd 1
cve 1
githubexploit 1
apple 1
prion 1
thn 1
nvd
nvd
CVE-2024-0230
2024-01-12 23:15:08
cve
cve
CVE-2024-0230
2024-01-12 23:15:08
githubexploit
githubexploit
Exploit for CVE-2024-0230
2024-05-21 22:23:57
apple
apple
About the security content of Magic Keyboard Firmware Update 2.0.6
2024-01-09 00:00:00
prion
prion
Session fixation
2024-01-12 23:15:00
thn
thn
New Bluetooth Flaw Let Hackers Take Over Android, Linux, macOS, and iOS Devices
2023-12-07 11:46:00

2.9 Low

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.8%

JSON
Related for CVELIST:CVE-2024-0230
nvd1cve1githubexploit1apple1prion1thn1