Описание
In generateRandomPassword of LocalBluetoothLeBroadcast.java, there is a possible way to intercept the Auracast audio stream due to an insecure default value. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Уязвимые конфигурации
Одно из
EPSS
5.7 Medium
CVSS3
Дефекты
Связанные уязвимости
In generateRandomPassword of LocalBluetoothLeBroadcast.java, there is a possible way to intercept the Auracast audio stream due to an insecure default value. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Уязвимость функции generateRandomPassword() модуля LocalBluetoothLeBroadcast.java операционных систем Android, позволяющая нарушителю раскрыть защищаемую информацию
EPSS
5.7 Medium
CVSS3