Microsoft is aware of the "Impersonation in the Passkey Entry Protocol" vulnerability. For more information regarding the vulnerability, please see this statement from the Bluetooth SIG. To address the vulnerability, Microsoft has released a software update that will fail attempts to pair if the remote device exchanges a public key with the same X coordinate as the locally exchanged public key
History

Tue, 08 Oct 2024 17:45:00 +0000


Tue, 08 Oct 2024 16:30:00 +0000

Type Values Removed Values Added
Description Windows Bluetooth Security Feature Bypass Vulnerability Microsoft is aware of the "Impersonation in the Passkey Entry Protocol" vulnerability. For more information regarding the vulnerability, please see this statement from the Bluetooth SIG. To address the vulnerability, Microsoft has released a software update that will fail attempts to pair if the remote device exchanges a public key with the same X coordinate as the locally exchanged public key
References

cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2021-01-12T19:41:56

Updated: 2024-10-08T16:17:35.308Z

Reserved: 2020-12-02T00:00:00

Link: CVE-2021-1638

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-01-12T20:15:30.277

Modified: 2024-10-08T17:15:14.883

Link: CVE-2021-1638

cve-icon Redhat

No data.