Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:15 a.m.4 views

CVE-2021-0319

In checkCallerIsSystemOr of CompanionDeviceManagerService.java, there is a possible way to get a nearby Bluetooth device's MAC address without appropriate permissions due to a permissions bypass. This could lead to local escalation of privilege that grants access to nearby MAC addresses, with Use...

7.3CVSS6.7AI score0.00256EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/07 4:33 p.m.9 views

CVE-2024-0028

In Audio Service, there is a possible way to obtain MAC addresses of nearby Bluetooth devices due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS6.7AI score0.0007EPSS
Exploits0References1
CVE
CVE
added 2025/09/05 4:10 p.m.46 views

CVE-2024-0028

The CVE-2024-0028 entry describes an information-disclosure flaw in Android’s Audio Service where a missing permission check could let an attacker obtain the MAC addresses of nearby Bluetooth devices. This is a local issue with low attack complexity and no user interaction required, potentially e...

5.5CVSS6.2AI score0.0007EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 3:7 a.m.5 views

CVE-2023-20929

In sendHalfSheetCancelBroadcast of HalfSheetActivity.java, there is a possible way to learn nearby BT MAC addresses due to an unrestricted broadcast intent. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.5AI score0.00091EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/24 12:0 a.m.6 views

CVE-2023-20929

In sendHalfSheetCancelBroadcast of HalfSheetActivity.java, there is a possible way to learn nearby BT MAC addresses due to an unrestricted broadcast intent. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.2AI score0.00091EPSS
Exploits0References1
NVD
NVD
added 2021/12/15 7:15 p.m.23 views

CVE-2021-1006

In several functions of DatabaseManager.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

4.4CVSS0.00109EPSS
Exploits0References1
CVE
CVE
added 2021/12/15 6:6 p.m.69 views

CVE-2021-1006

CVE-2021-1006 affects Android 12 where DatabaseManager.java functions leak Bluetooth MAC addresses via log information disclosure. The root cause is log exposure of MAC addresses, enabling local information disclosure with System privileges needed (no user interaction). Exploitation details are n...

4.4CVSS4.1AI score0.00109EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/12/15 6:6 p.m.20 views

CVE-2021-1006

In several functions of DatabaseManager.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

4.5AI score0.00109EPSS
Exploits0References1
NVD
NVD
added 2021/06/22 12:15 p.m.60 views

CVE-2021-0549

In sspRequestCallback of BondStateMachine.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

4.4CVSS0.00117EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/06/22 11:12 a.m.23 views

CVE-2021-0549

In sspRequestCallback of BondStateMachine.java, there is a possible leak of Bluetooth MAC addresses due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

4.5AI score0.00117EPSS
Exploits0References1
CVE
CVE
added 2021/06/22 11:12 a.m.74 views

CVE-2021-0549

CVE-2021-0549 affects Android 11 (Android-11) Bluetooth stack; the vulnerability is in sspRequestCallback within BondStateMachine.java, where log statements can leak Bluetooth MAC addresses, causing local information disclosure with potentially SYSTEM-level privileges. The issue is confirmed acro...

4.4CVSS4.1AI score0.00117EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/01/11 10:15 p.m.3 views

CVE-2021-0319

In checkCallerIsSystemOr of CompanionDeviceManagerService.java, there is a possible way to get a nearby Bluetooth device's MAC address without appropriate permissions due to a permissions bypass. This could lead to local escalation of privilege that grants access to nearby MAC addresses, with Use...

7.3CVSS6.7AI score0.00256EPSS
Exploits0References1
Rows per page
Query Builder