Vulnerability Details : CVE-2020-15509
Nordic Semiconductor Android BLE Library through 2.2.1 and DFU Library through 1.10.4 for Android (as used by nRF Connect and other applications) can engage in unencrypted communication while showing the user that the communication is purportedly encrypted. The problem is in bond creation (e.g., internalCreateBond in BleManagerHandler).
Products affected by CVE-2020-15509
- cpe:2.3:a:nordicsemi:android_ble_library:*:*:*:*:*:*:*:*
- cpe:2.3:a:nordicsemi:dfu_library:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2020-15509
0.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 13 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2020-15509
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
3.3
|
LOW | AV:A/AC:L/Au:N/C:P/I:N/A:N |
6.5
|
2.9
|
NIST | |
|
6.5
|
MEDIUM | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
2.8
|
3.6
|
NIST |
CWE ids for CVE-2020-15509
-
The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.Assigned by: nvd@nist.gov (Primary)
References for CVE-2020-15509
-
https://github.com/NordicSemiconductor/Android-BLE-Library/commits/master
Commits · NordicSemiconductor/Android-BLE-Library · GitHubPatch;Third Party Advisory
-
https://secretdiary.ninja/index.php/2020/07/03/norec-attack-stripping-ble-encryption-from-nordicsemis-android-library-cve-2020-15509/
Norec Attack: Stripping BLE encryption from NordicSemi’s Android Library (CVE-2020-15509) – The Secret Diary of a NinjaPatch;Third Party Advisory
-
https://github.com/NordicSemiconductor/Android-DFU-Library/commits/release
Commits · NordicSemiconductor/Android-DFU-Library · GitHubPatch;Third Party Advisory
Jump to