Skip Navigation

TechSploits @reddthat.com Tiff @reddthat.com 2y ago

Unauthenticated keystroke injection from BT on Android, Linux, macOS/iOS*

github.com reblog/cve-2023-45866 at main · skysafe/reblog

SkySafe Miscellaneous Reverse Engineering Blog. Contribute to skysafe/reblog development by creating an account on GitHub.

reblog/cve-2023-45866 at main · skysafe/reblog

Unpatched devices are vulnerable under the following conditions:

Android devices are vulnerable whenever Bluetooth is enabled
Linux/BlueZ requires that Bluetooth is discoverable/connectable
iOS and macOS are vulnerable when Bluetooth is enabled and a Magic Keyboard has been paired with the phone or computer

Time to disable Bluetooth on all your old android phones!

Hacker News @lemmy.smeargle.fans bot @lemmy.smeargle.fans

2y ago

Bluetooth keystroke-injection in Android, Linux, macOS and iOS

github.com /skysafe/reblog/tree/main/cve-2023-45866

Hacker News @derp.foo haxor @derp.foo

2y ago

CVE-2023-45866: Bluetooth keystroke-injection in Android, Linux, macOS and iOS

github.com /skysafe/reblog/tree/main/cve-2023-45866

1 comments

In general you should disable bluetooth if you dont use it