CVE-2020-0471

Name of the Vulnerable Software and Affected Versions Android versions Android-8.0 through Android-11

Description The issue is related to improper input validation in the reassemble and dispatch function of packet fragmenter.cc. This could allow an attacker to inject packets into an encrypted Bluetooth connection, potentially leading to remote escalation of privilege between two Bluetooth devices. The attack can be performed by a proximal attacker without needing additional execution privileges or user interaction.

Recommendations For Android versions Android-8.0 through Android-11, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.