2 matches found
CVE-2024-23717
In accesssecureservicefromtempbond of btmsec.cc, there is a possible way to achieve keystroke injection due to improper input validation. This could lead to remote proximal/adjacent escalation of privilege with no additional execution privileges needed. User interaction is not needed for...
CVE-2024-23717
CVE-2024-23717 affects Google's Android Bluetooth stack. The vulnerability is in the function access_secure_service_from_temp_bond of btm_sec.cc , caused by improper input validation, enabling keystroke injection and potential remote (proximal/adjacent) elevation of privilege without additional e...