Issued: Thursday, 27 May, 2021 |
Last Revision: Thursday, 27 May, 2021 |
Vendor: |
Product: |
Severity Level: |
Summary:
Multiple vulnerabilities have been discovered in Bluetooth devices that support Bluetooth Core and Mesh Specifications. These vulnerabilities allow for impersonation attacks and AuthValue disclosure which, in practice, could allow for man in the middle attacks within the range of two vulnerable bluetooth devices. Please find below the list of vulnerabilities:
- CVE-2020-26555 - Impersonation in the BR/EDR pin-pairing protocol
- CVE-2020-26556 - Malleable commitment in Bluetooth Mesh Profile provisioning
- CVE-2020-26557 - Predictable Authvalue in Bluetooth Mesh Profile provisioning leads to MITM
- CVE-2020-26558 - Impersonation in the Passkey entry protocol
- CVE-2020-26559 - Bluetooth Mesh Profile AuthValue leak
- CVE-2020-26560 - Impersonation attack in Bluetooth Mesh Profile provisioning
- VU#799380.5 - Authentication of the Bluetooth LE legacy-pairing protocol
According to the CERT Coordination Center, the affected vendors are the following:
- Android Open Source Project
- Cisco
- Cradlepoint
- Intel
- Microchip Technology
- Red Hat
- Sierra Wireless
Recommendation:
It is recommended to review the CERT Coordination Center advisory to check for any potentially affected systems based on the vendor statements on each of the vulnerabilities and apply the necessary measures to prevent vulnerability exploitation.
References: