CVE-2022-25837Authentication Bypass by Capture-replay in Core Specification

CWE-294Authentication Bypass by Capture-replay4 documents4 sources
Severity
7.5HIGHNVD
EPSS
0.2%
top 51.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Bluetooth Core Specification
Timeline
PublishedDec 12
Latest updateJul 6

Description

Bluetooth® Pairing in Bluetooth Core Specification v1.0B through v5.3 may permit an unauthenticated MITM to acquire credentials with two pairing devices via adjacent access when at least one device supports BR/EDR Secure Connections pairing and the other BR/EDR Legacy PIN code pairing if the MITM negotiates BR/EDR Secure Simple Pairing in Secure Connections mode using the Passkey association model with the pairing Initiator and BR/EDR Legacy PIN code pairing with the pairing Responder and brute

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:NExploitability: 1.2 | Impact: 5.8

Affected Packages1 packages

🔴Vulnerability Details

3
GHSA
GHSA-gcxw-4wrx-xhw5: Bluetooth® Pairing in Bluetooth Core Specification v12023-07-06
OSV
CVE-2022-25837: Bluetooth® Pairing in Bluetooth Core Specification v12022-12-12
CVEList
CVE-2022-25837: Bluetooth® Pairing in Bluetooth Core Specification v12022-12-12
CVE-2022-25837 — Core Specification vulnerability | cvebase