CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

In multiple functions of btm_ble_gap.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.

Product Status

Learn more

Versions 2 Total

Default Status: unaffected

affected

References 2 Total

https://android.googlesource.com/platform/packages/modules/Bluetooth/+/7b30443dac7bb9138275c909549110191bcbcae9
external site
https://source.android.com/security/bulletin/2023-12-01
external site

Updated: 2024-08-02

This container includes required additional information provided by the CVE Program for this vulnerability.

References 2 Total

https://android.googlesource.com/platform/packages/modules/Bluetooth/+/7b30443dac7bb9138275c909549110191bcbcae9
external site
x_transferred
https://source.android.com/security/bulletin/2023-12-01
external site
x_transferred

Authorized Data Publishers

Learn more

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: Android (associated with Google Inc. or Open Handset Alliance)

Description

Product Status

References 2 Total

CVE Program

References 2 Total

Authorized Data Publishers

CISA-ADP