CVE-2023-20977

Name of the Vulnerable Software and Affected Versions Android versions Android-13

Description The issue is related to a possible out of bounds read in the btm ble read remote features complete function of btm ble gap.cc due to improper input validation. This could lead to local information disclosure if the firmware were compromised, with System execution privileges needed. User interaction is not needed for exploitation.

Recommendations For Android version Android-13, update the firmware to a version that includes the fix for the out of bounds read issue in btm ble read remote features complete function. As a temporary workaround, consider restricting access to the btm ble gap.cc module to minimize the risk of exploitation.