Main Vulnerability Database Exploits ID:9637 - Exploit for Input validation error in Google Android - CVE-2023-45866

ID:9637 - Exploit for Input validation error in Google Android - CVE-2023-45866

Published: March 22, 2024

Vulnerability identifier: #VU83831

Vulnerability risk: Medium

CVE-ID: CVE-2023-45866

CWE-ID: CWE-20

Exploitation vector: Local access

Vulnerable software:
Google Android

Link to public exploit:

https://github.com/pentestfunctions/BlueDucky

Vulnerability description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to an unspecified vulnerability in Bluetooth implementation. A remote attacker with physical proximity to device can inject keystrokes by spoofing a keyboard and execute arbitrary commands on the system.

Remediation

Install updates from vendor's website.

ID:9637 - Exploit for Input validation error in Google Android - CVE-2023-45866

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human