Main Vulnerability Database Exploits ID:9889 - Exploit for Spoofing attack in Windows Server and Windows - CVE-2024-21306

ID:9889 - Exploit for Spoofing attack in Windows Server and Windows - CVE-2024-21306

Published: May 31, 2024

Vulnerability identifier: #VU85237

Vulnerability risk: Low

CVE-ID: CVE-2024-21306

CWE-ID: CWE-451

Exploitation vector: Adjecent network

Vulnerable software:
Windows Server
Windows

Link to public exploit:

https://github.com/PhucHauDeveloper/BadBlue

Vulnerability description

The vulnerability allows a remote attacker to perform spoofing attack.

The vulnerability exists due to incorrect processing of user-supplied data in the Microsoft Bluetooth Driver. A remote attacker on the local network can spoof page content.

Remediation

Install updates from vendor's website.

ID:9889 - Exploit for Spoofing attack in Windows Server and Windows - CVE-2024-21306

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human