1. Home
  2. Vulnerabilities
  3. CVE-2020-26558

CVE-2020-26558

CVSS v3.1 4.2 (Medium)
42% Progress
CVSS v2.0 4.3 (Medium)
43% Progress
EPSS 0.07 % (30th)
0.07% Progress
Affected Products 34
Advisories 42
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 through 5.2 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing (in the Passkey authentication procedure) by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. The attack methodology determines the Passkey value one bit at a time.

Weaknesses
CWE-287
Improper Authentication
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2021-05-24 18:15:07
(3 years ago)
Updated Date
2023-11-07 03:20:37
(10 months ago)

Affected Products

Bluetooth

Debian

Fedoraproject

Intel

Linux

Configuration #1

    CPE23 From Up To
  Bluetooth Core Specification from 2.1 version and 5.2 and prior versions cpe:2.3:a:bluetooth:bluetooth_core_specification >= 2.1 <= 5.2

Configuration #2

    CPE23 From Up To
  Fedoraproject Fedora 34 cpe:2.3:o:fedoraproject:fedora:34

Configuration #3

    CPE23 From Up To
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0

Configuration #4

    CPE23 From Up To
  Linux Kernel prior 5.13 version cpe:2.3:o:linux:linux_kernel < 5.13

Configuration #5

AND
    CPE23 From Up To
OR  
  Intel Ax210 Firmware cpe:2.3:o:intel:ax210_firmware:-
OR  
  Running on/with
  Intel Ax210 cpe:2.3:h:intel:ax210:-

Configuration #6

AND
    CPE23 From Up To
OR  
  Intel Ax201 Firmware cpe:2.3:o:intel:ax201_firmware:-
OR  
  Running on/with
  Intel Ax201 cpe:2.3:h:intel:ax201:-

Configuration #7

AND
    CPE23 From Up To
OR  
  Intel Ax200 Firmware cpe:2.3:o:intel:ax200_firmware:-
OR  
  Running on/with
  Intel Ax200 cpe:2.3:h:intel:ax200:-

Configuration #8

AND
    CPE23 From Up To
OR  
  Intel Ac 9560 Firmware cpe:2.3:o:intel:ac_9560_firmware:-
OR  
  Running on/with
  Intel Ac 9560 cpe:2.3:h:intel:ac_9560:-

Configuration #9

AND
    CPE23 From Up To
OR  
  Intel Ac 9462 Firmware cpe:2.3:o:intel:ac_9462_firmware:-
OR  
  Running on/with
  Intel Ac 9462 cpe:2.3:h:intel:ac_9462:-

Configuration #10

AND
    CPE23 From Up To
OR  
  Intel Ac 9461 Firmware cpe:2.3:o:intel:ac_9461_firmware:-
OR  
  Running on/with
  Intel Ac 9461 cpe:2.3:h:intel:ac_9461:-

Configuration #11

AND
    CPE23 From Up To
OR  
  Intel Ac 9260 Firmware cpe:2.3:o:intel:ac_9260_firmware:-
OR  
  Running on/with
  Intel Ac 9260 cpe:2.3:h:intel:ac_9260:-

Configuration #12

AND
    CPE23 From Up To
OR  
  Intel Ac 8265 Firmware cpe:2.3:o:intel:ac_8265_firmware:-
OR  
  Running on/with
  Intel Ac 8265 cpe:2.3:h:intel:ac_8265:-

Configuration #13

AND
    CPE23 From Up To
OR  
  Intel Ac 8260 Firmware cpe:2.3:o:intel:ac_8260_firmware:-
OR  
  Running on/with
  Intel Ac 8260 cpe:2.3:h:intel:ac_8260:-

Configuration #14

AND
    CPE23 From Up To
OR  
  Intel Ac 3168 Firmware cpe:2.3:o:intel:ac_3168_firmware:-
OR  
  Running on/with
  Intel Ac 3168 cpe:2.3:h:intel:ac_3168:-

Configuration #15

AND
    CPE23 From Up To
OR  
  Intel Ac 7265 Firmware cpe:2.3:o:intel:ac_7265_firmware:-
OR  
  Running on/with
  Intel Ac 7265 cpe:2.3:h:intel:ac_7265:-

Configuration #16

AND
    CPE23 From Up To
OR  
  Intel Ac 3165 Firmware cpe:2.3:o:intel:ac_3165_firmware:-
OR  
  Running on/with
  Intel Ac 3165 cpe:2.3:h:intel:ac_3165:-

Configuration #17

AND
    CPE23 From Up To
OR  
  Intel Ax1675 Firmware cpe:2.3:o:intel:ax1675_firmware:-
OR  
  Running on/with
  Intel Ax1675 cpe:2.3:h:intel:ax1675:-

Configuration #18

AND
    CPE23 From Up To
OR  
  Intel Ax1650 Firmware cpe:2.3:o:intel:ax1650_firmware:-
OR  
  Running on/with
  Intel Ax1650 cpe:2.3:h:intel:ax1650:-

Configuration #19

AND
    CPE23 From Up To
OR  
  Intel Ac 1550 Firmware cpe:2.3:o:intel:ac_1550_firmware:-
OR  
  Running on/with
  Intel Ac 1550 cpe:2.3:h:intel:ac_1550:-