Lucene search

PRIOn knowledge basePRION:CVE-2020-6616

HistoryMay 08, 2020 - 8:15 p.m.

Code injection

2020-05-0820:15:00

PRIOn knowledge base

www.prio-n.com

8.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.0%

JSON

Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) should have been used to prevent spoofing. This affects, for example, Samsung Galaxy S8, S8+, and Note8 devices with the BCM4361 chipset. The Samsung ID is SVE-2020-16882 (May 2020).

CPENameOperatorVersion
ipadoslt13.5
iphone_oslt13.5
mac_os_xge10.13.0
mac_os_xlt10.13.6
mac_os_xge10.14.0
mac_os_xlt10.14.6
mac_os_xeq10.14.6
mac_os_xeq10.14.6
mac_os_xeq10.14.6
mac_os_xeq10.14.6

Name	Operator	Version
ipados	lt	13.5
iphone_os	lt	13.5
mac_os_x	ge	10.13.0
mac_os_x	lt	10.13.6
mac_os_x	ge	10.14.0
mac_os_x	lt	10.14.6
mac_os_x	eq	10.14.6
mac_os_x	eq	10.14.6
mac_os_x	eq	10.14.6
mac_os_x	eq	10.14.6

Rows per page:

1-10 of 281

References

bluetooth.lol

seclists.org/fulldisclosure/2020/May/49

github.com/seemoo-lab/internalblue/blob/master/doc/rng.md

media.ccc.de/v/DiVOC-6-finding_eastereggs_in_broadcom_s_bluetooth_random_number_generator

security.samsungmobile.com/securityUpdate.smsb

support.apple.com/HT211168

support.apple.com/kb/HT211100

support.apple.com/kb/HT211168

twitter.com/naehrdine/status/1255980443368919045

twitter.com/naehrdine/status/1255981245147877377