CVE-2014-7914

Summary

btif/src/btif_dm.c in Android before 5.1 does not properly enforce the temporary nature of a Bluetooth pairing, which allows user-assisted remote attackers to bypass intended access restrictions via crafted Bluetooth packets after the tapping of a crafted NFC tag.

Affected Software

VendorProductVersion RangeStatus
GoogleAndroidbefore 5.1affected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References