Improper Access Control in Bluetooth Driver Allows for Local Sensitive Information Leak

Improper Access Control in Bluetooth Driver Allows for Local Sensitive Information Leak

CVE-2023-32808 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

In bluetooth driver, there is a possible read and write access to registers due to improper access control of register interface. This could lead to local leak of sensitive information with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07849751; Issue ID: ALPS07849751.

Learn more about our User Device Pen Test.