BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability
CVE-2024-8805

8.8HIGH

Key Information:

Vendor
Bluez
Status
Bluez
Vendor
CVE Published:
22 November 2024

Summary

The vulnerability within the BlueZ HID over GATT Profile arises from inadequate access control mechanisms, allowing unauthorized network-adjacent attackers to execute arbitrary code on affected installations without requiring authentication. This flaw stems from a lack of necessary authorization that should precede access to specific functionalities within the profile. An attacker could exploit this weakness to run code in the context of the current user, having significant implications for the security of systems running the affected versions of BlueZ. Further details can be found in the advisory linked from ZDI-24-1229.

Affected Version(s)

BlueZ 5.77

References

https://www.zerodayinitiative.com/advisories/ZDI-24-1229/
x_research-advisory

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

.
CVE-2024-8805 : BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability | SecurityVulnerability.io