10 matches found
CVE-2021-0328
In onBatchScanReports and deliverBatchScan of GattService.java, there is a possible way to retrieve Bluetooth scan results without permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is no...
EUVD-2021-2947
Malicious code in bioql PyPI...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung. A security vulnerability in the SAMSUNG Mobile devices BluetoothScanDialog module prior to SMR Aug-2022 Release 1, which originates from a vulnerable code in...
PT-2022-21840 · Unknown · Bluetoothscandialog
Name of the Vulnerable Software and Affected Versions: BluetoothScanDialog versions prior to SMR Aug-2022 Release 1 Description: A vulnerable code in the onCreate method of BluetoothScanDialog allows attackers to trick the user into selecting an unwanted Bluetooth device via tapjacking/overlay...
CVE-2021-0328
In onBatchScanReports and deliverBatchScan of GattService.java, there is a possible way to retrieve Bluetooth scan results without permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is no...
CVE-2021-0328
In onBatchScanReports and deliverBatchScan of GattService.java, there is a possible way to retrieve Bluetooth scan results without permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is no...
Design/Logic Flaw
In onBatchScanReports and deliverBatchScan of GattService.java, there is a possible way to retrieve Bluetooth scan results without permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is no...
ASB-A-172670415
In onBatchScanReports and deliverBatchScan of GattService.java, there is a possible way to retrieve Bluetooth scan results without permissions due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is no...
PT-2020-6904 · Unknown +1 · React Native Bluetooth Scan +1
Name of the Vulnerable Software and Affected Versions: Bluezone version 1.0.0 Description: The issue is related to the use of insufficiently random values in the React Native Bluetooth Scan component of the Bluezone application. This could allow a remote attacker to interfere with COVID-19 contac...
CVE-2017-13211
In btascanresultscbimpl of btifblescanner.cc, there is possible resource exhaustion if a large number of repeated BLE scan results are received. This could lead to a remote denial of service of a critical system process with no additional execution privileges needed. User interaction is not neede...