VDB
ASB-A-228837201
ASB-A-228837201
PUBLISHED
CVSS 8.600000381469727 HIGH
In btif_hh_hsdata_rpt_copy_cb of bta_hh.cc, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.
Risk Scores
CVSS 4.0
8.600000381469727
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| platform | system/bt | 12:0, 12, 12L:0 |
Exploit Intelligence
- 761669642/Mahesh-970-CVE-2023-21125_bluedriod_repo (github-poc)
Timeline
- Mar 1, 2025 CVE Published
- May 15, 2026 CVE Updated