In bta_dm_remove_sec_dev_entry of bta_dm_act.cc, there is...
Moderate severity
Unreviewed
Published
Nov 20, 2024
to the GitHub Advisory Database
•
Updated Dec 18, 2024
Description
Published by the National Vulnerability Database
Nov 20, 2024
Published to the GitHub Advisory Database
Nov 20, 2024
Last updated
Dec 18, 2024
In bta_dm_remove_sec_dev_entry of bta_dm_act.cc, there is a possible out of bounds read due to a use after free. This could lead to remote information disclosure over bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.
References