Design/Logic Flaw

In btifdmauthcmplevt of btifdm.cc, there is a possible vulnerability in Cross-Transport Key Derivation due to Weakness in Bluetooth Standard. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2022-20361

CVE-2022-20361 describes a vulnerability in Android Bluetooth stack (btif_dm_auth_cmpl_evt in btif_dm.cc) related to Cross-Transport Key Derivation. Root cause is a weakness in the Bluetooth protocol implementation, enabling remote elevation of privilege with no user interaction. Affected product...

ASB-A-231161832

In btifdmauthcmplevt of btifdm.cc, there is a possible vulnerability in Cross-Transport Key Derivation due to Weakness in Bluetooth Standard. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Bluetooth 竞争条件问题漏洞

Bluetooth is a Bluetooth Special Interest Group SIG standards organization standard for short-range wireless technology for exchanging data between fixed and mobile devices over short distances using UHF radio waves in the ISM band from 2.402 GHz to 2.48 GHz, and for building personal area networ...