CVE-2020-26555 : Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B th

Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN.

Published 2021-05-24 18:15:08

Updated 2022-10-07 03:00:13

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2020-26555

Intel » Ax201 Firmware » Version: N/A
cpe:2.3:o:intel:ax201_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ax201 » Version: N/A
Intel » Ax200 Firmware » Version: N/A
cpe:2.3:o:intel:ax200_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ax200 » Version: N/A
Intel » Ac 9560 Firmware » Version: N/A
cpe:2.3:o:intel:ac_9560_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ac 9560 » Version: N/A
Intel » Ac 9462 Firmware » Version: N/A
cpe:2.3:o:intel:ac_9462_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ac 9462 » Version: N/A
Intel » Ac 9461 Firmware » Version: N/A
cpe:2.3:o:intel:ac_9461_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ac 9461 » Version: N/A
Intel » Ac 9260 Firmware » Version: N/A
cpe:2.3:o:intel:ac_9260_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ac 9260 » Version: N/A
Intel » Ac 8265 Firmware » Version: N/A
cpe:2.3:o:intel:ac_8265_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ac 8265 » Version: N/A
Intel » Ac 8260 Firmware » Version: N/A
cpe:2.3:o:intel:ac_8260_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ac 8260 » Version: N/A
Intel » Ac 3168 Firmware » Version: N/A
cpe:2.3:o:intel:ac_3168_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ac 3168 » Version: N/A
Intel » Ac 7265 Firmware » Version: N/A
cpe:2.3:o:intel:ac_7265_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ac 7265 » Version: N/A
Intel » Ac 3165 Firmware » Version: N/A
cpe:2.3:o:intel:ac_3165_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ac 3165 » Version: N/A
Intel » Ax210 Firmware » Version: N/A
cpe:2.3:o:intel:ax210_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Ax210 » Version: N/A
Intel » Killer Ac 1550 Firmware » Version: N/A
cpe:2.3:o:intel:killer_ac_1550_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Killer Ac 1550 » Version: N/A
Intel » Killer Wi-fi 6 Ax1650 Firmware » Version: N/A
cpe:2.3:o:intel:killer_wi-fi_6_ax1650_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Killer Wi-fi 6 Ax1650 » Version: N/A
Intel » Killer Wi-fi 6e Ax1675 Firmware » Version: N/A
cpe:2.3:o:intel:killer_wi-fi_6e_ax1675_firmware:-:*:*:*:*:*:*:*
Matching versions
When used together with: Intel » Killer Wi-fi 6e Ax1675 » Version: N/A
Fedoraproject » Fedora » Version: 34
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
Matching versions
Bluetooth » Bluetooth Core Specification
Versions from including (>=) 1.1b and up to, including, (<=) 5.2
cpe:2.3:a:bluetooth:bluetooth_core_specification:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2020-26555

EPSS FAQ

0.23%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 46 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-26555

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.8	MEDIUM	AV:A/AC:L/Au:N/C:P/I:P/A:N	6.5	4.9	NIST
Access Vector: Adjacent Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: None
5.4	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N	2.8	2.5	NIST
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: Low Integrity: Low Availability: None

CWE ids for CVE-2020-26555

CWE-863 Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2020-26555

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00520.html

INTEL-SA-00520
Third Party Advisory

CVEs referencing this url
https://www.bluetooth.com/learn-about-bluetooth/key-attributes/bluetooth-security/reporting-security/

Reporting Security Vulnerabilities | Bluetooth® Technology Website
Vendor Advisory

CVEs referencing this url
https://kb.cert.org/vuls/id/799380

VU#799380 - Devices supporting Bluetooth Core and Mesh Specifications are vulnerable to impersonation attacks and AuthValue disclosure
Third Party Advisory;US Government Resource

CVEs referencing this url
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NSS6CTGE4UGTJLCOZOASDR3T3SLL6QJZ/

[SECURITY] Fedora 34 Update: kernel-5.12.7-300.fc34 - package-announce - Fedora Mailing-Lists
Mailing List;Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2020-26555

Products affected by CVE-2020-26555

Exploit prediction scoring system (EPSS) score for CVE-2020-26555

CVSS scores for CVE-2020-26555

CWE ids for CVE-2020-26555

References for CVE-2020-26555