CVE-2020-26559Incorrect Authorization in Mesh Profile

CWE-863Incorrect Authorization5 documents5 sources
Severity
8.8HIGHNVD
EPSS
1.3%
top 20.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Bluetooth Mesh Profile
Timeline
PublishedMay 24
Latest updateMay 24

Description

Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (participating in the provisioning protocol) to identify the AuthValue used given the Provisioner’s public key, and the confirmation number and nonce provided by the provisioning device. This could permit a device without the AuthValue to complete provisioning without brute-forcing the AuthValue.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

NVDbluetooth/mesh_profile1.0.0, 1.0.1+1

🔴Vulnerability Details

3
GHSA
GHSA-wfh5-x68w-hvw2: Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 12022-05-24
CVEList
CVE-2020-26559: Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 12021-05-24
OSV
CVE-2020-26559: Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 12021-05-24

📋Vendor Advisories

1
Red Hat
kernel: Authvalue leak in Bluetooth Mesh Provisioning2021-05-24
CVE-2020-26559 — Incorrect Authorization | cvebase