CVE-2023-20973 – This CVE describes an out-of-bounds read vulner... (How to Fix)

Q: What is the severity of CVE-2023-20973?

CVE-2023-20973 has a CVSS score of 5.5 (MEDIUM). This CVE describes an out-of-bounds read vulnerability in Android's Bluetooth stack that could allow local information disclosure. Attackers with system execution privileges could potentially read memory beyond intended boundaries. Only Android 13 devices are affected.

📋 TL;DR

This CVE describes an out-of-bounds read vulnerability in Android's Bluetooth stack that could allow local information disclosure. Attackers with system execution privileges could potentially read memory beyond intended boundaries. Only Android 13 devices are affected.

💻 Affected Systems

Products:

Android

Versions: Android 13

Operating Systems: Android

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects devices running Android 13. Requires system execution privileges for exploitation.

📦 What is this software?

Android by Google

View all CVEs affecting Android →

⚠️ Risk & Real-World Impact

🔴

Worst Case

System-level attacker could read sensitive memory contents, potentially exposing cryptographic keys, authentication tokens, or other privileged data.

🟠

Likely Case

Local attacker with system privileges could read limited memory contents, potentially exposing some system information but not full system compromise.

🟢

If Mitigated

With proper privilege separation and SELinux policies, impact is limited to information disclosure within Bluetooth subsystem context.

🌐 Internet-Facing: LOW - This is a local vulnerability requiring system execution privileges, not remotely exploitable.

🏢 Internal Only: MEDIUM - Requires local system access, but could be exploited by malicious apps or users with elevated privileges.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires system execution privileges and knowledge of Bluetooth stack internals. No user interaction needed.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Android Security Patch Level June 2023 or later

Vendor Advisory: https://source.android.com/security/bulletin/pixel/2023-06-01

Restart Required: Yes

Instructions:

1. Check for system updates in Settings > System > System update. 2. Install Android Security Patch Level June 2023 or later. 3. Reboot device after installation.

🔧 Temporary Workarounds

Disable Bluetooth when not needed

android

Reduces attack surface by disabling Bluetooth functionality

adb shell settings put global bluetooth_on 0
Settings > Connected devices > Connection preferences > Bluetooth > Toggle off

🧯 If You Can't Patch

Restrict system privileges to trusted applications only
Implement strict SELinux policies to limit Bluetooth service capabilities

🔍 How to Verify

Check if Vulnerable:

Check Android version and security patch level: Settings > About phone > Android version and Security update

Check Version:

adb shell getprop ro.build.version.security_patch

Verify Fix Applied:

Verify Security Patch Level is June 2023 or later: Settings > About phone > Android version > Security update

📡 Detection & Monitoring

Log Indicators:

Unusual Bluetooth stack crashes in system logs
Multiple failed Bluetooth connection attempts with unusual parameters

Network Indicators:

None - this is a local vulnerability

SIEM Query:

source="android_system" AND (process="bluetooth" OR process="btm") AND (event="crash" OR event="exception")

📊 Metadata

CVE ID: CVE-2023-20973

CVSS v3 Score: 5.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-125

Published: March 24, 2023

Last Updated: February 25, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-20973, you might also want to check these: