14 matches found
CVE-2023-40080
In multiple functions of btmblegap.cc, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-21130
In btmbleperiodicadvsynclost of btmblegap.cc, there is a possible remote code execution due to a buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID...
CVE-2023-45773
In multiple functions of btmblegap.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-40080
In multiple functions of btmblegap.cc, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
Out-of-bounds
In multiple functions of btmblegap.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...
Google Android 安全漏洞
Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to a logic error in the code in multiple functions of btmblegap.cc, which can be exploited by an attacker to gain elevated privileges on the system...
ASB-A-275057847
In multiple functions of btmblegap.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation...
CVE-2023-21195
In btmbleperiodicadvsynctxrcvd of btmblegap.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure over Bluetooth, if the firmware were compromised with System execution privileges needed. User interaction is not needed for...
CVE-2023-21130
In btmbleperiodicadvsynclost of btmblegap.cc, there is a possible remote code execution due to a buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID...
CVE-2023-21130
CVE-2023-21130 describes a buffer overflow in the Android Bluetooth stack (btm_ble_periodic_adv_sync_lost in btm_ble_gap.cc) that could allow remote code execution without user interaction or additional privileges on Android 13. Multiple sources consistently identify this as a Critical/RCE issue ...
CVE-2023-20977
In btmblereadremotefeaturescomplete of btmblegap.cc, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if the firmware were compromised with System execution privileges needed. User interaction is not needed for...
CVE-2023-20989
In btmblewriteadvenablecomplete of btmblegap.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Andro...
CVE-2023-20977
In btmblereadremotefeaturescomplete of btmblegap.cc, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure if the firmware were compromised with System execution privileges needed. User interaction is not needed for...
CVE-2023-20989
In btmblewriteadvenablecomplete of btmblegap.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Andro...