CVE Vulnerabilities

CVE-2024-0230

Published: Jan 12, 2024 | Modified: Jan 19, 2024
CVSS 3.x
2.4
LOW
Source:
NVD
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

A session management issue was addressed with improved checks. This issue is fixed in Magic Keyboard Firmware Update 2.0.6. An attacker with physical access to the accessory may be able to extract its Bluetooth pairing key and monitor Bluetooth traffic.

Affected Software

Name Vendor Start Version End Version
Magic_keyboard_firmware Apple * *

References