CVE-2023-44101

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 11, 2023

Updated: Oct 16, 2023

CWE ID 668

Summary

CVE-2023-44101 is a newly discovered vulnerability affecting Bluetooth modules. The issue lies in the permission control for broadcast notifications, which if exploited successfully, could potentially impact the confidentiality of data being transmitted. An attacker may broadcast notifications to unintended recipients, gaining unauthorized access to sensitive information. This vulnerability highlights the importance of securing Bluetooth communications and implementing strict access controls to prevent unauthorized broadcast notifications.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HarmonyOS

Affected Vendors

Huawei Technologies

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sybOv7
https://www.cve.org/CVERecord?id=CVE-2023-44101
https://nvd.nist.gov/vuln/detail/CVE-2023-44101

Back to Vulnerability Database