BlueZ Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability
CVE-2023-27349

7.1HIGH

Key Information:

Vendor: Bluez
Status: Bluez
Vendor: CVE Published:; 3 May 2024

What is CVE-2023-27349?

A vulnerability within the BlueZ Bluetooth protocol stack affects the Audio/Video Remote Control Profile (AVRCP), exposing systems to potential remote code execution attacks. This vulnerability arises from inadequate validation of user-supplied data during AVRCP handling, leading to buffer overflows. When a user connects to a malicious Bluetooth device, an attacker can exploit this flaw to execute arbitrary code within the context of the operating system. Proper security measures should be implemented to mitigate the risks associated with this vulnerability, especially in environments where Bluetooth connectivity is prevalent.

Affected Version(s)

BlueZ 5.66

References

https://www.zerodayinitiative.com/advisories/ZDI-23-386/

x_research-advisory

https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit...

vendor-advisory

https://lists.debian.org/debian-lts-announce/2024/05/msg0...

EPSS Score

7% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 3, 2024
Vulnerability Reserved
Feb 28, 2023

Bluez

What is CVE-2023-27349?

Affected Version(s)

References

EPSS Score

CVSS V3.1

Timeline