What the vulnerability does
01Description
Improper access control vulnerability in Bluetooth prior to SMR Mar-2023 Release 1 allows attackers to send file via Bluetooth without related permission.
CVSS base score
4.1/10
CVSS vector
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:L
Key dates
02Disclosure timeline
March 16, 2023
CVE published
February 26, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2023-34106 GLPI vulnerable to unauthorized access to User data
CVE-2024-1678 Subway – Private Site Option <= 2.1.4 - Improper Access Control to Sensitive Information Exposure via REST API
CVE-2022-1553 Leaking password protected articles content due to improper access control in publify/publify
CVE-2019-11783
CVE-2024-38163 Windows Update Stack Elevation of Privilege Vulnerability
