Microsoft is aware of the "Impersonation in the Passkey Entry Protocol" vulnerability. For more information regarding the vulnerability, please see this statement from the Bluetooth SIG.
To address the vulnerability, Microsoft has released a software update that will fail attempts to pair if the remote device exchanges a public key with the same X coordinate as the locally exchanged public key
Metrics
Affected Vendors & Products
References
History
Tue, 08 Oct 2024 17:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Tue, 08 Oct 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Windows Bluetooth Security Feature Bypass Vulnerability | Microsoft is aware of the "Impersonation in the Passkey Entry Protocol" vulnerability. For more information regarding the vulnerability, please see this statement from the Bluetooth SIG. To address the vulnerability, Microsoft has released a software update that will fail attempts to pair if the remote device exchanges a public key with the same X coordinate as the locally exchanged public key |
References |
|
MITRE
Status: PUBLISHED
Assigner: microsoft
Published: 2021-01-12T19:41:56
Updated: 2024-10-08T16:17:35.308Z
Reserved: 2020-12-02T00:00:00
Link: CVE-2021-1638
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-01-12T20:15:30.277
Modified: 2024-10-08T17:15:14.883
Link: CVE-2021-1638
Redhat
No data.