Affected Products
| Vendor | Product | Versions |
|---|---|---|
| platform | packages/modules/Bluetooth | 12L-next:0, 12L-next, 12L-next |
| platform | packages/apps/Bluetooth | 10, 12:0, 12 |
Timeline
- Jun 1, 2022 CVE Published
- May 15, 2026 CVE Updated
In setScanMode of AdapterService.java, there is a possible way to enable Bluetooth discovery mode without user interaction due to a missing permission check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for exploitation.
| Vendor | Product | Versions |
|---|---|---|
| platform | packages/modules/Bluetooth | 12L-next:0, 12L-next, 12L-next |
| platform | packages/apps/Bluetooth | 10, 12:0, 12 |