An unauthenticated attacker within BLE proximity can remotely connect to a 7-Eleven LED Message Cup, Hello Cup 1.3.1 for Android, and bypass the application's client-side chat censor filter.
References
Link | Resource |
---|---|
https://github.com/actuator/7-Eleven-Bluetooth-Smart-Cup-Jailbreak | Exploit |
https://github.com/actuator/cve/blob/main/CVE-2023-34761 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-06-28T00:00:00
Updated: 2023-06-28T00:00:00
Reserved: 2023-06-07T00:00:00
Link: CVE-2023-34761
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-06-28T20:15:09.647
Modified: 2023-07-06T16:10:01.227
Link: CVE-2023-34761
JSON object: View
Redhat Information
No data.
CWE