Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-11-28T00:00:00

Updated: 2024-08-02T10:49:09.028Z

Reserved: 2023-01-20T00:00:00

Link: CVE-2023-24023

cve-icon Vulnrichment

Updated: 2024-08-01T13:13:02.065Z

cve-icon NVD

Status : Modified

Published: 2023-11-28T07:15:41.340

Modified: 2024-08-01T14:35:02.220

Link: CVE-2023-24023

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-12-02T00:00:00Z

Links: CVE-2023-24023 - Bugzilla