CVE-2023-20987 – This vulnerability allows local information dis... (How to Fix)

Q: What is the severity of CVE-2023-20987?

CVE-2023-20987 has a CVSS score of 4.5 (MEDIUM). This vulnerability allows local information disclosure via Bluetooth on Android 13 devices. An attacker with system execution privileges can read memory beyond intended bounds without user interaction, potentially exposing sensitive data. Only Android 13 devices with Bluetooth enabled are affected.

📋 TL;DR

This vulnerability allows local information disclosure via Bluetooth on Android 13 devices. An attacker with system execution privileges can read memory beyond intended bounds without user interaction, potentially exposing sensitive data. Only Android 13 devices with Bluetooth enabled are affected.

💻 Affected Systems

Products:

Android

Versions: Android 13

Operating Systems: Android

Default Config Vulnerable: ⚠️ Yes

Notes: Requires Bluetooth to be enabled and attacker to have system execution privileges. Pixel devices specifically mentioned in bulletins.

📦 What is this software?

Android by Google

View all CVEs affecting Android →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker with system privileges could read sensitive memory contents from the Bluetooth stack, potentially exposing cryptographic keys, authentication tokens, or other protected data.

🟠

Likely Case

Limited information disclosure of non-critical Bluetooth stack data to a privileged local attacker, with minimal practical impact on most users.

🟢

If Mitigated

No impact if Bluetooth is disabled or device is patched; minimal risk if proper privilege separation is maintained.

🌐 Internet-Facing: LOW - Requires local access and system privileges, not remotely exploitable over internet.

🏢 Internal Only: MEDIUM - Requires local access with elevated privileges, could be exploited by malicious apps or compromised system processes.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires system execution privileges, making exploitation more difficult than user-level vulnerabilities. No public exploit code known.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Android Security Patch Level June 2023 or later

Vendor Advisory: https://source.android.com/security/bulletin/pixel/2023-06-01

Restart Required: Yes

Instructions:

1. Check for system updates in Settings > System > System update. 2. Install Android Security Patch Level June 2023 or later. 3. Restart device after installation.

🔧 Temporary Workarounds

Disable Bluetooth

android

Turn off Bluetooth to prevent exploitation of this vulnerability

adb shell settings put global bluetooth_on 0
Settings > Connected devices > Connection preferences > Bluetooth > Toggle off

🧯 If You Can't Patch

Restrict Bluetooth usage to trusted devices only
Monitor for suspicious Bluetooth activity and privilege escalation attempts

🔍 How to Verify

Check if Vulnerable:

Check Android version and security patch level: Settings > About phone > Android version and Security update level

Check Version:

adb shell getprop ro.build.version.security_patch

Verify Fix Applied:

Verify security patch level is June 2023 or later: Settings > About phone > Security update level

📡 Detection & Monitoring

Log Indicators:

Unusual Bluetooth stack errors or crashes in system logs
Multiple failed Bluetooth connection attempts from privileged processes

Network Indicators:

Suspicious Bluetooth pairing attempts from system-level processes

SIEM Query:

source="android_system" AND (process="bluetooth" OR process="btm_acl") AND (error="out_of_bounds" OR error="memory_access")

📊 Metadata

CVE ID: CVE-2023-20987

CVSS v3 Score: 4.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-125

Published: March 24, 2023

Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-20987, you might also want to check these: