Security Advisory

CVE-2025-32330

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-04 18:33:55

Last updated 2025-09-05 17:19:32

Assigner google_android

State PUBLISHED

Description

In generateRandomPassword of LocalBluetoothLeBroadcast.java, there is a possible way to intercept the Auracast audio stream due to an insecure default value. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

← Browse all CVEs View on cve.org ↗