Unrestricted Bluetooth HCI Packet Dumping Vulnerability in Samsung Galaxy Gear Series

Unrestricted Bluetooth HCI Packet Dumping Vulnerability in Samsung Galaxy Gear Series

CVE-2018-16270 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Samsung Galaxy Gear series before build RE2 includes the hcidump utility with no privilege or permission restriction. This allows an unprivileged process to dump Bluetooth HCI packets to an arbitrary file path.

Learn more about our Web Application Penetration Testing UK.