Lucene search
K

78 matches found

ATTACKERKB
ATTACKERKB
added 2023/06/28 6:15 p.m.4 views

CVE-2023-21188

In btmbleupdateinqresult of btmblegap.cc, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

4.4CVSS6.4AI score0.00098EPSS
Exploits0References2
OSV
OSV
added 2023/06/28 6:15 p.m.2 views

CVE-2023-21202

In btmdeletestoredlinkkeycomplete of btmdevctl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure over Bluetooth with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions...

4.5CVSS5.9AI score
Exploits0References1
CNNVD
CNNVD
added 2023/06/28 12:0 a.m.5 views

Google Pixel 缓冲区错误漏洞

Google Pixel is a smartphone from Google, an American company. Google Pixel suffers from a security vulnerability that stems from a possible out-of-bounds read due to a lack of bounds checking in btmdevctl.cc's btmdeletestoredlinkkeycomplete, which could lead to the disclosure of local informatio...

4.5CVSS5.1AI score0.00138EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/06/28 12:0 a.m.8 views

Google Pixel 安全漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from a security vulnerability that originates in btmaclencryptchange in btmacl.cc, which could lead to the disclosure of local information as the remote device can be encrypted with encryption turned off an...

5CVSS5.7AI score0.00076EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/06/28 12:0 a.m.4 views

Google Pixel 缓冲区错误漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from a security vulnerability that stems from a possible out-of-bounds read due to a heap buffer overflow in btmblegap.cc's btmbleupdateinqresult, which could lead to a local information disclosure...

4.4CVSS5.4AI score0.00098EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/06/28 12:0 a.m.6 views

PT-2023-17985 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to an incorrect bounds check in the btm acl process sca cmpl pkt function of btm acl.cc, which could lead to a possible out of bounds read. This might result in remote information...

7.5CVSS7.1AI score0.00441EPSS
Exploits0References3
OSV
OSV
added 2023/06/15 7:15 p.m.4 views

CVE-2023-21130

In btmbleperiodicadvsynclost of btmblegap.cc, there is a possible remote code execution due to a buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID...

9.8CVSS6.7AI score0.00529EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/15 12:0 a.m.6 views

PT-2023-17907 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-11 through Android-12L Description: The issue is related to improperly used crypto in the btm sec encrypt change function of btm sec.cc. This could lead to a paired device escalation of privilege with no additional...

8.8CVSS8.4AI score0.00105EPSS
Exploits0References3
OSV
OSV
added 2023/06/01 12:0 a.m.28 views

ASB-A-258834033

In btmsecencryptchange of btmsec.cc, there is a possible way to downgrade the link key type due to improperly used crypto. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS8.7AI score0.00105EPSS
Exploits0References1
OSV
OSV
added 2023/03/24 8:15 p.m.3 views

CVE-2023-20983

In btmblerandenccomplete of btmble.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

4.4CVSS5.9AI score0.00109EPSS
Exploits0References1
OSV
OSV
added 2023/03/24 8:15 p.m.4 views

CVE-2023-20986

In btmbleclearresolvinglistcompletecomplete of btmbleprivacy.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

4.4CVSS5.9AI score0.00096EPSS
Exploits0References1
OSV
OSV
added 2023/03/24 8:15 p.m.5 views

CVE-2023-20972

In btmvendorspecificevt of btmdevctl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

5.5CVSS5.9AI score0.00091EPSS
Exploits0References1
Prion
Prion
added 2023/03/24 8:15 p.m.22 views

Out-of-bounds

In btmbleprocessperiodicadvsynclostevt of blescannerhciinterface.cc , there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product:...

1.4CVSS4.3AI score0.00093EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.4 views

PT-2023-17760 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: In the btm vendor specific evt function of btm devctl.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution...

5.5CVSS5.4AI score0.00091EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.5 views

PT-2023-17779 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a possible out of bounds read in the btm ble rand enc complete function of btm ble.cc due to a missing bounds check. This could lead to local information disclosure, requiring...

4.4CVSS4.3AI score0.00096EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.5 views

PT-2023-17761 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a possible out of bounds read in the btm create conn cancel complete function of btm sec.cc due to a missing bounds check. This could lead to local information disclosure,...

5.5CVSS5.5AI score0.00094EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.5 views

PT-2023-17765 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a possible out of bounds read in the btm ble read remote features complete function of btm ble gap.cc due to improper input validation. This could lead to local information...

4.4CVSS4.8AI score0.00093EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.5 views

PT-2023-17774 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to a possible out of bounds read in the btm ble clear resolving list complete function of btm ble privacy.cc due to a missing bounds check. This could lead to local information...

4.4CVSS4.2AI score0.00096EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/03/24 12:0 a.m.17 views

CVE-2023-20986

In btmbleclearresolvinglistcompletecomplete of btmbleprivacy.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

4.6AI score0.00096EPSS
Exploits0References1
NVD
NVD
added 2023/01/09 8:15 a.m.36 views

CVE-2022-33284

Information disclosure due to buffer over-read in WLAN while parsing BTM action frame...

8.2CVSS8.2AI score0.00354EPSS
Exploits0References1
Rows per page
Query Builder