CVE-2023-21347 – This Bluetooth vulnerability allows attackers t... (How to Fix)

Q: What is the severity of CVE-2023-21347?

CVE-2023-21347 has a CVSS score of 7.5 (HIGH). This Bluetooth vulnerability allows attackers to read memory beyond intended boundaries without user interaction, potentially exposing sensitive information. It affects Android devices running vulnerable versions, requiring no special privileges for exploitation.

📋 TL;DR

This Bluetooth vulnerability allows attackers to read memory beyond intended boundaries without user interaction, potentially exposing sensitive information. It affects Android devices running vulnerable versions, requiring no special privileges for exploitation.

💻 Affected Systems

Products:

Android

Versions: Android 14 and potentially earlier versions

Operating Systems: Android

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with Bluetooth enabled. The vulnerability is in the Android Bluetooth stack implementation.

📦 What is this software?

Android by Google

View all CVEs affecting Android →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote attacker could read sensitive memory contents including authentication tokens, encryption keys, or personal data from nearby Bluetooth-enabled Android devices.

🟠

Likely Case

Information disclosure of nearby device data or Bluetooth stack memory contents, potentially enabling further attacks.

🟢

If Mitigated

Limited impact with proper network segmentation and Bluetooth disabled on sensitive devices.

🌐 Internet-Facing: LOW

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires proximity to target device and Bluetooth connectivity. No user interaction needed.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Android 14 security updates (October 2023 or later)

Vendor Advisory: https://source.android.com/docs/security/bulletin/android-14

Restart Required: Yes

Instructions:

1. Check for Android system updates in Settings > System > System update. 2. Install available security updates. 3. Restart device after installation.

🔧 Temporary Workarounds

Disable Bluetooth

android

Turn off Bluetooth when not in use to prevent exploitation

Settings > Connected devices > Connection preferences > Bluetooth > Toggle off

Restrict Bluetooth Visibility

android

Set Bluetooth to non-discoverable mode to reduce attack surface

Settings > Connected devices > Connection preferences > Bluetooth > Device name > Turn off 'Make device discoverable'

🧯 If You Can't Patch

Disable Bluetooth on all affected devices
Implement network segmentation to isolate Bluetooth traffic

🔍 How to Verify

Check if Vulnerable:

Check Android version and security patch level in Settings > About phone > Android version

Check Version:

adb shell getprop ro.build.version.security_patch

Verify Fix Applied:

Verify security patch level is October 2023 or later in Settings > About phone > Android version

📡 Detection & Monitoring

Log Indicators:

Unusual Bluetooth connection attempts
Bluetooth stack crashes or errors

Network Indicators:

Suspicious Bluetooth traffic patterns
Multiple connection attempts from unknown devices

SIEM Query:

source="android_logs" AND (event="bluetooth_error" OR event="bluetooth_crash")

📊 Metadata

CVE ID: CVE-2023-21347

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-125

Published: October 30, 2023

Last Updated: November 21, 2024

🔗 References

https://source.android.com/docs/security/bulletin/android-14 Vendor Advisory
https://source.android.com/docs/security/bulletin/android-14 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-21347, you might also want to check these: