CVE-2020-6616 — Use of Cryptographically Weak Pseudo-Random Number Generator in Apple Ipados

CWE-338 — Use of Cryptographically Weak Pseudo-Random Number Generator CWE-1240 — Use of a Cryptographic Primitive with a Risky Implementation3 documents3 sources

Severity

6.5MEDIUMNVD

EPSS

0.1%

top 68.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Ipados Apple Iphone OS Apple MAC OS X

Timeline

PublishedMay 8

Latest updateMay 24

Description

Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) should have been used to prevent spoofing. This affects, for example, Samsung Galaxy S8, S8+, and Note8 devices with the BCM4361 chipset. The Samsung ID is SVE-2020-16882 (May 2020).

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

▶NVDapple/ipados< 13.5

▶NVDapple/mac_os_x10.13.0 — 10.13.6+4

▶NVDapple/iphone_os< 13.5

🔴Vulnerability Details

GHSA

GHSA-jj4x-qm7q-jmm9: Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations whe↗2022-05-24

▶

📐Framework References

CWE

Use of a Cryptographic Primitive with a Risky Implementation↗

▶