Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2024-38271
HistoryJun 26, 2024 - 4:15 p.m.

CVE-2024-38271

2024-06-2616:15:11
CWE-404
[email protected]
web.nvd.nist.gov
2
quickshare nearby vulnerability
temporary hotspot
bluetooth
wifi network
offlineframe
quickshare upgrade

0.0004 Low

EPSS

Percentile

9.1%

JSON

There exists a vulnerability in Quickshare/Nearby where an attacker can force the a victim to stay connected to a temporary hotspot created for the share. As part of the sequence of packets in a QuickShare connection over Bluetooth, the attacker forces the victim to connect to the attacker’s WiFi network and then sends an OfflineFrame that crashes Quick Share.
This makes the Wifi connection to the attacker’s network last instead of returning to the old network when the Quick Share session is done allowing the attacker to be a MiTM. We recommend upgrading to version 1.0.1724.0 of Quickshare or above

Related

cvelist 1
vulnrichment 1
cve 1
cvelist
cvelist
CVE-2024-38271 Denial of Service in Quickshare
2024-06-26 15:19:13
vulnrichment
vulnrichment
CVE-2024-38271 Denial of Service in Quickshare
2024-06-26 15:19:13
cve
cve
CVE-2024-38271
2024-06-26 16:15:11

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for NVD:CVE-2024-38271
cvelist1vulnrichment1cve1