Improper authentication vulnerability in Bluetooth pairing process prior to SMR Jan-2024 Release 1 allows remote attackers to establish pairing process without user interaction.
Attack Vector Adjacent Network
Attack Complexity Low
Privileges Required None
Scope Unchanged
Confidentiality Impact None
Integrity Impact High
Availability Impact None
User Interaction None
No CVSS v3.0
No CVSS v2
Vendors | Products |
---|---|
Samsung |
|
Configuration 1 [-]
|
References
Link | Resource |
---|---|
https://security.samsungmobile.com/securityUpdate.smsb?year=2024&month=01 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: SamsungMobile
Published: 2024-01-04T01:10:11.797Z
Updated: 2024-01-04T01:10:11.797Z
Reserved: 2023-12-05T04:57:52.531Z
Link: CVE-2024-20803
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-01-04T01:15:09.223
Modified: 2024-01-10T16:11:26.313
Link: CVE-2024-20803
JSON object: View
Redhat Information
No data.
CWE