Microsoft addressed a Remote code execution vulnerability on their Bluetooth service on March 2023 Patch Tuesday.
This vulnerability could allow an unauthorized threat actor to run a certain function on the Windows Bluetooth driver, which could lead to executing arbitrary code on the vulnerable system.
However, a threat actor must have access to the same network as the victim system before exploiting this vulnerability. This issue was associated with Bluetooth Low Energy (BLE) and advertising to provide a brief insight.
https://cybersecuritynews.com/windows-b ... erability/