Bluetooth Packet Dump Vulnerability in Samsung Galaxy Gear Series
CVE-2018-16270

7.5HIGH

Key Information:

Vendor: Samsung
Status: Galaxy Gear Firmware
Vendor: CVE Published:; 22 January 2020

Summary

The Samsung Galaxy Gear series prior to build RE2 contains the hcidump utility, which inadvertently allows unprivileged processes to access and dump Bluetooth HCI packets. This lack of permission restrictions can lead to potential exploitation, enabling attackers to capture sensitive Bluetooth communication. Users of affected devices should be aware of the risks and consider applying available updates to mitigate exposure.

References

https://media.defcon.org/DEF%20CON%2026/DEF%20CON%2026%20...

x_refsource_MISC

https://www.youtube.com/watch?v=3IdgBwbOT-g&feature=youtu.be

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 22, 2020
Vulnerability Reserved
Aug 31, 2018