Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could impersonate a Bluetooth BR/EDR master or slave to pair with a previously paired remote device to successfully complete the authentication procedure without knowing the link key.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: certcc
Published: 2020-05-19T15:50:14Z
Updated: 2024-09-17T02:57:41.936Z
Reserved: 2020-03-05T00:00:00
Link: CVE-2020-10135
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-05-19T16:15:11.073
Modified: 2021-12-21T12:42:21.433
Link: CVE-2020-10135
Redhat