Login Sign Up

CVE-2024-38271

4.8 MEDIUM
Denial of Service

📋 TL;DR

This vulnerability in Quick Share/Nearby allows an attacker to force a victim's device to remain connected to the attacker's WiFi network after a file sharing session, enabling man-in-the-middle attacks. The attacker exploits Bluetooth communication during Quick Share to trigger a crash that prevents normal network reversion. Users of vulnerable Quick Share versions are affected.

💻 Affected Systems

Products:
  • Google Quick Share
  • Google Nearby Share
Versions: Versions below 1.0.1724.0
Operating Systems: Windows, Android, ChromeOS
Default Config Vulnerable: ⚠️ Yes
Notes: Requires both Bluetooth and WiFi enabled, with Quick Share/Nearby active.

📦 What is this software?

Nearby by Google

View all CVEs affecting Nearby →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attacker performs persistent man-in-the-middle attacks, intercepting sensitive data, injecting malware, or redirecting to malicious sites through the maintained WiFi connection.

🟠

Likely Case

Attacker intercepts unencrypted network traffic, potentially capturing login credentials, personal data, or session cookies from the victim's device.

🟢

If Mitigated

With proper controls like network segmentation and encrypted communications, impact is limited to temporary connection disruption.

🌐 Internet-Facing: MEDIUM - Requires proximity via Bluetooth and WiFi, but can affect devices in public spaces.
🏢 Internal Only: LOW - Requires physical proximity and specific conditions, making internal exploitation less likely.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Exploitation requires proximity via Bluetooth and specific packet sequence timing.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 1.0.1724.0 or above

Vendor Advisory: https://github.com/google/nearby/pull/2402

Restart Required: Yes

Instructions:

1. Open Quick Share/Nearby settings. 2. Check current version. 3. Update to version 1.0.1724.0 or higher via official app store or update mechanism. 4. Restart the application or device.

🔧 Temporary Workarounds

Disable Quick Share/Nearby

all

Temporarily disable the vulnerable feature until patched.

Disable automatic WiFi connections

all

Prevent automatic connection to new WiFi networks during file sharing.

🧯 If You Can't Patch

  • Disable Bluetooth when not in use to prevent initial exploitation.
  • Use VPN for all network traffic to encrypt communications even if redirected.

🔍 How to Verify

Check if Vulnerable:

Check Quick Share/Nearby version in application settings; if below 1.0.1724.0, it is vulnerable.

Check Version:

Check via app settings UI; no universal command-line command available.

Verify Fix Applied:

Confirm version is 1.0.1724.0 or higher after update and test Quick Share functionality.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected WiFi network switches during Quick Share sessions
  • Quick Share/Nearby application crashes

Network Indicators:

  • Devices connecting to unfamiliar WiFi SSIDs after file transfers
  • Unusual Bluetooth packet sequences

SIEM Query:

Search for events where WiFi network changes coincide with Quick Share/Nearby activity or crashes.

📊 Metadata

CVE ID: CVE-2024-38271
CVSS v3 Score: 4.8 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H
CWE: CWE-404
Published: June 26, 2024
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-38271, you might also want to check these:

CVE-2025-38385 7.8

This CVE describes a kernel warning triggered during USB device disconnection in the Linux kernel's ...

Same vulnerability type (CWE-404)
CVE-2022-23033 7.8

This Xen hypervisor vulnerability on ARM systems allows guest virtual machines to retain access to m...

Same vulnerability type (CWE-404)
CVE-2021-0984 7.8

This vulnerability in Android 12 allows local privilege escalation without user interaction. An inco...

Same vulnerability type (CWE-404)