RSS   Vulnerabilities for 'Bluetooth core specification'   RSS

2021-06-25
 
CVE-2021-31615

CWE-326
 

 
Unencrypted Bluetooth Low Energy baseband links in Bluetooth Core Specifications 4.0 through 5.2 may permit an adjacent device to inject a crafted packet during the receive window of the listening device before the transmitting device initiates its packet transmission to achieve full MITM status without terminating the link. When applied against devices establishing or using encrypted links, crafted packets may be used to terminate an existing link, but will not compromise the confidentiality or integrity of the link.

 
2020-09-11
 
CVE-2020-15802

CWE-287
 

 
Devices supporting Bluetooth before 5.1 may allow man-in-the-middle attacks, aka BLURtooth. Cross Transport Key Derivation in Bluetooth Core Specification v4.2 and v5.0 may permit an unauthenticated user to establish a bonding with one transport, either LE or BR/EDR, and replace a bonding already established on the opposing transport, BR/EDR or LE, potentially overwriting an authenticated key with an unauthenticated key, or a key with greater entropy with one with less.

 

 >>> Vendor: Bluetooth 3 Products
Bluetooth stack
Bluetooth core
Bluetooth core specification


Copyright 2024, cxsecurity.com

 

Back to Top