Android: Blue Frag Bluetooth vulnerability

Dave

Dave

Well-Known Member
Joined
Mar 4, 2020
Messages
10,211
Location
the sunlit uplands of Utopia
About 50% of Android phones are vulnerable to BlueFrag which potentially can steal personal data over the same proximity conditions as proposed for trackers. Affected phones are on Android 8 or 9 with security patch level older than Feb 2020. Android 10 is partially vulnerable, its Bluetooth can crash but there is no data exploitation.

If you're on 8 or 9 and don't have the Feb 2020 security update it's probably wise to keep Bluetooth off when not in use.

CVE - CVE-2020-0022

cve.mitre.org

Android Security Bulletin—February 2020 | Android Open Source Project

source.android.com source.android.com
 
Tsepz_GP

Tsepz_GP

New Member
Joined
May 5, 2020
Messages
4
This is why Android OEMs need to start supporting devices for longer. This leaves a whole lot of pretty recent Android flagships at risk, such as the Samsung Galaxy S8 series which are now on quarterly updates.


Sent from my iPhone using Tapatalk
 
You must log in or register to reply here.
Top