3 matches found
CVE-2021-0991
In OnMetadataChangedListener of AdvancedBluetoothDetailsHeaderController.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for...
CVE-2021-0542
CVE-2021-0542 affects Android 11, with the issue residing in the BeamTransferManager.java workflow where a missing permission check in updateNotification can lead to local information disclosure of paired Bluetooth addresses. Exploitation requires no additional execution privileges but may requir...
CVE-2020-14292
In the COVIDSafe application through 1.0.21 for Android, unsafe use of the Bluetooth transport option in the GATT connection allows attackers to trick the application into establishing a connection over Bluetooth BR/EDR transport, which reveals the public Bluetooth address of the victim's phone...