Описание
In the Airoha Bluetooth audio SDK, there is a possible way to pair Bluetooth audio device without user consent. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
EPSS
Процентиль: 26%
0.00089
Низкий
8.8 High
CVSS3
Дефекты
CWE-863
Связанные уязвимости
CVSS3: 8.8
github
6 месяцев назад
In the Airoha Bluetooth audio SDK, there is a possible way to pair Bluetooth audio device without user consent. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVSS3: 6.3
fstec
7 месяцев назад
Уязвимость компонента BR/EDR Bluetooth-чипов TWS-наушников Airoha Technology, позволяющая нарушителю обойти существующие ограничения безопасности
EPSS
Процентиль: 26%
0.00089
Низкий
8.8 High
CVSS3
Дефекты
CWE-863