Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.9
CVSSv2

CVE-2020-26556

Published: 24/05/2021 Updated: 29/04/2022
CVSS v2 Base Score: 2.9 | Impact Score: 2.9 | Exploitability Score: 5.5
CVSS v3 Base Score: 7.5 | Impact Score: 5.9 | Exploitability Score: 1.6
VMScore: 259
Vector: AV:A/AC:M/Au:N/C:P/I:N/A:N
Subscribe to Bluetooth

Vulnerability Summary

A flaw was found in the Linux kernel’s authentication protocol in the Bluetooth® Mesh Profile Specification. A vulnerability occurs if the AuthValue is identified during the provisioning procedure, even if the AuthValue is selected randomly. This flaw allows an malicious user to identify the AuthValue used before the provisioning procedure times out, possibly completing the provisioning operation and obtaining a NetKey. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

bluetooth mesh profile 1.0.0

bluetooth mesh profile 1.0.1

bluetooth bluetooth core specification

Vendor Advisories

Debian CVElist Bug Report Logs: BlueMirror mesh attacks - CVE-2020-26556, CVE-2020-26557, CVE-2020-26559, CVE-2020-26560
Debian Bug report logs - #1006406 BlueMirror mesh attacks - CVE-2020-26556, CVE-2020-26557, CVE-2020-26559, CVE-2020-26560 Package: src:bluez; Maintainer for src:bluez is Debian Bluetooth Maintainers <team+pkg-bluetooth@trackerdebianorg>; Reported by: Ben Hutchings <ben@decadentorguk> Date: Fri, 25 Feb 2022 02:30: ...
Red Hat: CVE-2020-26556
A flaw was found in the Linux kernel’s authentication protocol in the Bluetooth® Mesh Profile Specification A vulnerability occurs if the AuthValue is identified during the provisioning procedure, even if the AuthValue is selected randomly This flaw allows an attacker to identify the AuthValue used before the provisioning proced ...
Arch Linux Issues:
Mesh Provisioning in the Bluetooth Mesh profile 10 and 101 may permit a nearby device, able to conduct a successful brute-force attack on an insufficiently random AuthValue before the provisioning procedure times out, to complete authentication by leveraging Malleable Commitment ...

References

CWE-307https://kb.cert.org/vuls/id/799380https://www.bluetooth.com/learn-about-bluetooth/key-attributes/bluetooth-security/reporting-security/https://www.kb.cert.org/vuls/id/799380https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1006406https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2020-26556
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460CVE-2024-4646CVE-2024-29212IMAPCVE-2023-36672CVE-2024-34547command injectionCVE-2024-4651stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook