Lucene search

MitreCVE-2020-26555

HistoryMay 24, 2021 - 6:15 p.m.

CVE-2020-26555

2021-05-2418:15:07

CWE-863

mitre

web.nvd.nist.gov

130

cve-2020-26555

bluetooth

br/edr

pin code

pairing

vulnerability

nvd

CVSS2

4.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:L/Au:N/C:P/I:P/A:N

CVSS3

5.4

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

25.4%

JSON

Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN.

Affected configurations

Nvd

Node

bluetoothbluetooth_core_specificationRange1.1b–5.2

Node

fedoraprojectfedoraMatch34

Node

intelax210_firmwareMatch-

AND

intelax210Match-

Node

intelax201_firmwareMatch-

AND

intelax201Match-

Node

intelax200_firmwareMatch-

AND

intelax200Match-

Node

intelac_9560_firmwareMatch-

AND

intelac_9560Match-

Node

intelac_9462_firmwareMatch-

AND

intelac_9462Match-

Node

intelac_9461_firmwareMatch-

AND

intelac_9461Match-

Node

intelac_9260_firmwareMatch-

AND

intelac_9260Match-

Node

intelac_8265_firmwareMatch-

AND

intelac_8265Match-

Node

intelac_8260_firmwareMatch-

AND

intelac_8260Match-

Node

intelac_3168_firmwareMatch-

AND

intelac_3168Match-

Node

intelac_7265_firmwareMatch-

AND

intelac_7265Match-

Node

intelac_3165_firmwareMatch-

AND

intelac_3165Match-

Node

intelkiller_wi-fi_6e_ax1675_firmwareMatch-

AND

intelkiller_wi-fi_6e_ax1675Match-

Node

intelkiller_wi-fi_6_ax1650_firmwareMatch-

AND

intelkiller_wi-fi_6_ax1650Match-

Node

intelkiller_ac_1550_firmwareMatch-

AND

intelkiller_ac_1550Match-

VendorProductVersionCPE
bluetoothbluetooth_core_specification*cpe:2.3:a:bluetooth:bluetooth_core_specification:*:*:*:*:*:*:*:*
fedoraprojectfedora34cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
intelax210_firmware-cpe:2.3:o:intel:ax210_firmware:-:*:*:*:*:*:*:*
intelax210-cpe:2.3:h:intel:ax210:-:*:*:*:*:*:*:*
intelax201_firmware-cpe:2.3:o:intel:ax201_firmware:-:*:*:*:*:*:*:*
intelax201-cpe:2.3:h:intel:ax201:-:*:*:*:*:*:*:*
intelax200_firmware-cpe:2.3:o:intel:ax200_firmware:-:*:*:*:*:*:*:*
intelax200-cpe:2.3:h:intel:ax200:-:*:*:*:*:*:*:*
intelac_9560_firmware-cpe:2.3:o:intel:ac_9560_firmware:-:*:*:*:*:*:*:*
intelac_9560-cpe:2.3:h:intel:ac_9560:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
bluetooth	bluetooth_core_specification	*	cpe:2.3:a:bluetooth:bluetooth_core_specification::::::::
fedoraproject	fedora	34	cpe:2.3:o:fedoraproject:fedora:34:::::::*
intel	ax210_firmware	-	cpe:2.3:o:intel:ax210_firmware:-:::::::*
intel	ax210	-	cpe:2.3:h:intel:ax210:-:::::::*
intel	ax201_firmware	-	cpe:2.3:o:intel:ax201_firmware:-:::::::*
intel	ax201	-	cpe:2.3:h:intel:ax201:-:::::::*
intel	ax200_firmware	-	cpe:2.3:o:intel:ax200_firmware:-:::::::*
intel	ax200	-	cpe:2.3:h:intel:ax200:-:::::::*
intel	ac_9560_firmware	-	cpe:2.3:o:intel:ac_9560_firmware:-:::::::*
intel	ac_9560	-	cpe:2.3:h:intel:ac_9560:-:::::::*