Lucene search
K

5 matches found

CNVD
CNVD
added 2023/12/06 12:0 a.m.15 views

Google Android elevation of privilege vulnerability (CNVD-2024-07127)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to the disclosure of side-channel information in the BTMble.cc script BTMBleVerifySignature, which can be exploited by an attacker to gain elevated...

6.5CVSS6.7AI score0.00542EPSS
Exploits0References1
NVD
NVD
added 2023/12/04 11:15 p.m.28 views

CVE-2023-40090

In BTMBleVerifySignature of btmble.cc, there is a possible way to bypass signature validation due to side channel information disclosure. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.5CVSS0.00542EPSS
Exploits0References2
Prion
Prion
added 2023/12/04 11:15 p.m.17 views

Design/Logic Flaw

In BTMBleVerifySignature of btmble.cc, there is a possible way to bypass signature validation due to side channel information disclosure. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4CVSS7.3AI score0.00542EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/12/04 10:40 p.m.23 views

CVE-2023-40090

In BTMBleVerifySignature of btmble.cc, there is a possible way to bypass signature validation due to side channel information disclosure. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.8AI score0.00542EPSS
Exploits0References2
CVE
CVE
added 2023/12/04 10:40 p.m.123 views

CVE-2023-40090

What’s affected: Google Android platform vulnerability CVE-2023-40090 in the Bluetooth stack, specifically BTM_BleVerifySignature in btm_ble.cc. The issue is described as bypassing signature validation via side-channel information disclosure, enabling remote escalation of privilege with no additi...

6.5CVSS6.6AI score0.00542EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder