6.5

CVE-2020-6616

Exploit

EPSS 0.12%
Published 08.05.2020 20:15:12
Last modified 21.11.2024 05:36:02
Source cve@mitre.org
Teams watchlist Login
Open Login

Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) should have been used to prevent spoofing. This affects, for example, Samsung Galaxy S8, S8+, and Note8 devices with the BCM4361 chipset. The Samsung ID is SVE-2020-16882 (May 2020).

Affected products Warnungen 0 Metrics 3 CWE 0 References 13

Data is provided by the National Vulnerability Database (NVD)

Google ≫ Android Version-

   Samsung ≫ Galaxy Note8 Version-
   Samsung ≫ Galaxy S8 Version-
   Samsung ≫ Galaxy S8 Plus Version-

Apple ≫ iPadOS Version < 13.5

Apple ≫ iPhone OS Version < 13.5

Apple ≫ macOS X Version >= 10.13.0 < 10.13.6

Apple ≫ macOS X Version >= 10.14.0 < 10.14.6

Apple ≫ macOS X Version >= 10.15 < 10.15.4

Apple ≫ macOS X Version10.13.6 Updatesecurity_update_2018-002

Apple ≫ macOS X Version10.13.6 Updatesecurity_update_2018-003

Apple ≫ macOS X Version10.13.6 Updatesecurity_update_2019-001

Apple ≫ macOS X Version10.13.6 Updatesecurity_update_2019-002

Apple ≫ macOS X Version10.13.6 Updatesecurity_update_2019-003

Apple ≫ macOS X Version10.13.6 Updatesecurity_update_2019-004

Apple ≫ macOS X Version10.13.6 Updatesecurity_update_2019-005

Apple ≫ macOS X Version10.13.6 Updatesecurity_update_2019-006

Apple ≫ macOS X Version10.13.6 Updatesecurity_update_2019-007

Apple ≫ macOS X Version10.13.6 Updatesecurity_update_2020-001

Apple ≫ macOS X Version10.13.6 Updatesupplemental_update

Apple ≫ macOS X Version10.14.6 Updatesecurity_update_2019-001

Apple ≫ macOS X Version10.14.6 Updatesecurity_update_2019-002

Apple ≫ macOS X Version10.14.6 Updatesecurity_update_2019-004

Apple ≫ macOS X Version10.14.6 Updatesecurity_update_2019-005

Apple ≫ macOS X Version10.14.6 Updatesecurity_update_2019-006

Apple ≫ macOS X Version10.14.6 Updatesecurity_update_2019-007

Apple ≫ macOS X Version10.14.6 Updatesecurity_update_2020-001

Apple ≫ macOS X Version10.14.6 Updatesupplemental_update

Apple ≫ macOS X Version10.14.6 Updatesupplemental_update_2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.12%	0.326

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov	3.3	6.5	2.9	AV:A/AC:L/Au:N/C:N/I:P/A:N

https://support.apple.com/kb/HT211168

Third Party Advisory

https://security.samsungmobile.com/securityUpdate.smsb

Vendor Advisory

https://support.apple.com/kb/HT211100

Third Party Advisory

http://seclists.org/fulldisclosure/2020/May/49

Third Party Advisory

Mailing List

https://support.apple.com/HT211168

Third Party Advisory

http://bluetooth.lol

Third Party Advisory

https://github.com/seemoo-lab/internalblue/blob/master/doc/rng.md

Third Party Advisory

https://media.ccc.de/v/DiVOC-6-finding_eastereggs_in_broadcom_s_bluetooth_random_number_generator

Third Party Advisory

Exploit

https://twitter.com/naehrdine/status/1255980443368919045

Third Party Advisory

https://twitter.com/naehrdine/status/1255981245147877377

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2020-6616

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-6616

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-6616

EUVD