Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (participating in the provisioning protocol) to identify the AuthValue used given the Provisioner’s public key, and the confirmation number and nonce provided by the provisioning device. This could permit a device without the AuthValue to complete provisioning without brute-forcing the AuthValue.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Bluetooth 安全漏洞
Vulnerability Description
Bluetooth是蓝牙特别兴趣小组(SIG)标准组织的一种短距离无线技术标准,用于使用ISM 频段(从 2.402 GHz 到 2.48GHz)中的UHF 无线电波在短距离内在固定和移动设备之间交换数据,以及构建个人区域网络(PAN)。 Bluetooth Mesh profile 1.0版本和1.0.1版本的Bluetooth Mesh Provisioning存在安全漏洞,该漏洞允许没有AuthValue的设备在不强制使用AuthValue的情况下完成配置。
CVSS Information
N/A
Vulnerability Type
N/A