CVE-2023-21647

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 8, 2023

Updated: Apr 12, 2024

CWE ID 20

Summary

CVE-2023-21647 is a newly identified information disclosure vulnerability affecting Bluetooth technology. This issue arises when an incorrectly validated GATT (General Attribute Profile) packet is received. Hackers can exploit this vulnerability to gain unauthorized access to sensitive data. Impacted devices may include smartphones, computers, and other Bluetooth-enabled devices. Users are advised to update their Bluetooth software to mitigate this risk. The failure to validate GATT packets appropriately can result in significant data exposure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sQDJFl
https://www.cve.org/CVERecord?id=CVE-2023-21647
https://nvd.nist.gov/vuln/detail/CVE-2023-21647

Back to Vulnerability Database

CVE-2023-21647

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations