Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-45866 PoC — Google Android 安全漏洞

Source
https://github.com/cisnarfu/Bluepop
Associated Vulnerability
Title:Google Android 安全漏洞 (CVE-2023-45866)
Description:Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate and establish an encrypted connection, and accept HID keyboard reports, potentially permitting injection of HID messages when no user interaction has occurred in the Central role to authorize such access. An example affected package is bluez 5.64-0ubuntu1 in Ubuntu 22.04LTS. NOTE: in some cases, a CVE-2020-0556 mitigation would have already addressed this Bluetooth HID Hosts issue.
Description
CVE-2023-45866
Readme
# Bluepop

CVE-2023-45866

## Installation and Usage 🛠️

## Setup

```bash
sudo apt-get update
sudo apt-get -y upgrade
sudo apt install -y bluez-tools bluez-hcidump libbluetooth-dev \
                    git gcc python3-pip python3-setuptools \
                    python3-pydbus


git clone https://github.com/pybluez/pybluez.git
cd pybluez
sudo python3 setup.py install

cd ~/
git clone --depth=1 https://github.com/bluez/bluez.git
gcc -o bdaddr ~/bluez/tools/bdaddr.c ~/bluez/src/oui.c -I ~/bluez -lbluetooth
sudo cp bdaddr /usr/local/bin/
```

## Running
```bash
git clone https://github.com/cisnarfu/Bluepop.git
cd Bluepop
pip3 install -r requirements.txt
sudo hciconfig hci0 up
python3 ./src/bluepop.py
```
File Snapshot

 [4.0K]  /data/pocs/eef57c3045ba40510ac1d6bb8955daaefcc2ca12
├── [4.0K]  payloads
│   ├── [ 238]  payload_example_1.txt
│   ├── [  84]  payload_example_2.txt
│   └── [ 645]  wp_payload.txt
├── [ 719]  README.md
├── [  81]  requirements.txt
└── [4.0K]  src
    ├── [2.9K]  bluepop.py
    ├── [4.0K]  bluetoothM
    │   ├── [1.9K]  adapter.py
    │   ├── [1.1K]  agent.py
    │   └── [2.2K]  __init__.py
    ├── [ 310]  config.py
    ├── [6.3K]  duckyscript.py
    ├── [   1]  __init__.py
    ├── [4.0K]  L2CAP
    │   ├── [4.6K]  client.py
    │   ├── [4.0K]  exceptions
    │   │   ├── [  54]  ConnectionFailureException.py
    │   │   ├── [ 214]  __init__.py
    │   │   └── [ 276]  ReconnectionRequiredException.py
    │   ├── [  81]  __init__.py
    │   └── [ 741]  manager.py
    └── [4.0K]  utils
        ├── [4.1K]  helper.py
        ├── [   0]  __init__.py
        ├── [4.0K]  menu_functions.py
        └── [5.4K]  register_device.py

6 directories, 22 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →