Identity Authentication Bypass Vulnerability in Huawei Smart Screen Bluetooth Module
CVE-2023-6514

8.8HIGH

Key Information:

Vendor: Huawei
Status: AJMD-370S
Vendor: CVE Published:; 6 December 2023

Badges

📰 News Worthy

Summary

The Bluetooth module in several Huawei Smart Screen products is affected by an identity authentication bypass vulnerability. If exploited, this issue could grant attackers unauthorized access to restricted functionalities within the devices. Users are advised to ensure their devices are updated and to follow recommended security practices to mitigate potential risks associated with this vulnerability.

Affected Version(s)

AJMD-370S 103.1.0.110(SP12C00E2R1P2)

News Articles

prophaze.com

CVE-2023-6514

CVE-2023-6514 : HUAWEI AJMD-370S 103.1.0.110(SP12C00E2R1P2) BLUETOOTH MODULE LOGIC ERROR - Cloud WAF

CVE-2023-6514 : The Bluetooth module of some Huawei Smart Screen products has an identity authentication bypass vulnerability.

References

https://www.huawei.com/en/psirt/security-advisories/2023/...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

📰
First article discovered by prophaze.com
Dec 7, 2023
Vulnerability published
Dec 6, 2023
Vulnerability Reserved
Dec 5, 2023

Key Information:

Badges

Summary

Affected Version(s)

Get notified when SecurityVulnerability.io launches alerting 🔔

News Articles

CVE-2023-6514 : HUAWEI AJMD-370S 103.1.0.110(SP12C00E2R1P2) BLUETOOTH MODULE LOGIC ERROR - Cloud WAF

References

CVSS V3.1

Timeline