CVE-2023-21395

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Oct 30, 2023
Updated: Nov 2, 2023
CWE ID 416

Summary

CVE-2023-21395 is a vulnerability in Bluetooth that could potentially lead to remote information disclosure without the need for user interaction. This vulnerability is due to a use after free issue, which results in an out of bounds read. The affected products include various Bluetooth-enabled devices. To remediate this vulnerability, it is recommended to apply the latest security updates and patches provided by the respective vendors. The potential danger posed by this vulnerability is high, as it allows an attacker to gain unauthorized access to sensitive information over Bluetooth without requiring additional execution privileges.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-21395 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options