Remote Code Execution Vulnerability in btm_ble_periodic_adv_sync_lost of btm_ble_gap.cc

Remote Code Execution Vulnerability in btm_ble_periodic_adv_sync_lost of btm_ble_gap.cc

CVE-2023-21130 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

In btm_ble_periodic_adv_sync_lost of btm_ble_gap.cc, there is a possible remote code execution due to a buffer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-273502002

Learn more about our Cis Benchmark Audit For Google Android.