CVSS 3.1 Score 2.4 of 10 (low)


Published Jan 12, 2024
Updated: Jan 19, 2024


CVE-2024-0230 is a session management issue that has been addressed in Magic Keyboard Firmware Update 2.0.6. The vulnerability allows an attacker with physical access to the accessory to extract its Bluetooth pairing key and monitor Bluetooth traffic. The base severity of this vulnerability is rated as LOW, with a base score of 2.4 out of 10. The exploitability score is 0.9 out of 10, indicating a relatively high likelihood of exploitation. The potential danger posed by this vulnerability to an organization is relatively low, with only a confidentiality impact and no integrity or availability impact.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-0230 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options