Specific Vulnerabilities Related to OBEX

Bluesnarfing: This attack exploits OBEX to access all files on a victim's device without consent. It remains a concern, especially for devices that do not implement robust security measures.

BLUFFS Vulnerabilities: A recent set of vulnerabilities known as BLUFFS affects Bluetooth Core Specifications 4.2 to 5.4, allowing attackers to impersonate devices and intercept communications

CVE-2025-32875: Insufficient authentication during Bluetooth binding, allowing unauthorized devices to connect during initial setup.

CVE-2025-32876: Weakness in the encryption process during Bluetooth handshakes, particularly in certain Android environments.

CVE-2025-44559: A Denial of Service (DoS) vulnerability in the Bluetooth Low Energy (BLE) stack, allowing attackers to disrupt services by sending crafted packets.