Lucene search

K
cvelistMitreCVELIST:CVE-2023-24023
HistoryNov 28, 2023 - 12:00 a.m.

CVE-2023-24023

2023-11-2800:00:00
mitre
www.cve.org
bluetooth
br/edr
vulnerability
specification
man-in-the-middle
encryption
bluffs

7.1 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.2%

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.