CVE-2024-0016

Ivan Lon — Wed, 08 May 2024 04:12:27 +0000

Description

In multiple locations, there is a possible out of bounds read due to a missing bounds check. This could lead to paired device information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

References

MISC:https://android.googlesource.com/platform/packages/modules/Bluetooth/+/1d7ba7c8a205522f384e8d5c7c9f26a421cab5f1
URL:https://android.googlesource.com/platform/packages/modules/Bluetooth/+/1d7ba7c8a205522f384e8d5c7c9f26a421cab5f1
MISC:https://source.android.com/security/bulletin/2024-01-01
URL:https://source.android.com/security/bulletin/2024-01-01

CVE-2024-0016 - Common Vulnerabilities and Exposures

CVE-2024-0016