btif/src/btif_dm.c in Android before 5.1 does not properly enforce the temporary nature of a Bluetooth pairing, which allows user-assisted remote attackers to bypass intended access restrictions via crafted Bluetooth packets after the tapping of a crafted NFC tag.
References
Link | Resource |
---|---|
https://android.googlesource.com/platform/external/bluetooth/bluedroid/+/0360aa7c418152a3e5e335a065ac3629cbb09559 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Chrome
Published: 2020-02-21T01:38:36
Updated: 2020-02-21T01:38:36
Reserved: 2014-10-06T00:00:00
Link: CVE-2014-7914
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-02-21T02:15:10.893
Modified: 2020-02-26T19:14:02.530
Link: CVE-2014-7914
JSON object: View
Redhat Information
No data.
CWE