CVE-2023-21395

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Oct 30, 2023

Updated: Nov 2, 2023

CWE ID 416

Summary

CVE-2023-21395 is a newly identified vulnerability affecting Bluetooth technology. It involves an out-of-bounds read issue due to a use-after-free condition. This weakness could result in remote information disclosure over Bluetooth networks, making it a potential security risk. Notably, no additional execution privileges or user interaction are required for successful exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Android

Affected Vendors

Google

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s5HkbY
https://www.cve.org/CVERecord?id=CVE-2023-21395
https://nvd.nist.gov/vuln/detail/CVE-2023-21395

Back to Vulnerability Database