Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatcveRedhat.comRH:CVE-2023-24023
HistoryDec 18, 2023 - 7:56 a.m.

CVE-2023-24023

2023-12-1807:56:46
redhat.com
access.redhat.com
34
bluetooth
flaw
man-in-the-middle
vulnerability
encryption key
red hat product security

7.6 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.9%

JSON

A flaw was found in Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4. This issue may allow certain man-in-the-middle attacks that force a short key length and might lead to discovery of the encryption key and live injection, aka BLUFFS.

Mitigation

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Related

mscve 1
debiancve 1
thn 1
cve 1
schneier 1
ubuntucve 1
cvelist 1
prion 1
nessus 14
ubuntu 5
openvas 9
osv 5
mskb 7
kaspersky 1
redhat 4
oraclelinux 1
rapid7blog 1
mscve
mscve
Mitre: CVE-2023-24023 Bluetooth Vulnerability
2023-11-14 08:00:00
debiancve
debiancve
CVE-2023-24023
2023-11-28 07:15:41
thn
thn
New BLUFFS Bluetooth Attack Expose Devices to Adversary-in-the-Middle Attacks
2023-12-04 13:16:00
cve
cve
CVE-2023-24023
2023-11-28 07:15:41
schneier
schneier
New Bluetooth Attack
2023-12-08 12:05:19
ubuntucve
ubuntucve
CVE-2023-24023
2023-11-28 00:00:00
cvelist
cvelist
CVE-2023-24023
2023-11-28 00:00:00
prion
prion
Design/Logic Flaw
2023-11-28 07:15:00
nessus
nessus
Ubuntu 22.04 LTS : Linux kernel vulnerabilities (USN-6742-2)
2024-04-24 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Linux kernel vulnerabilities (USN-6742-1)
2024-04-19 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-6741-1)
2024-04-19 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2024-04-19 00:00:00
Linux kernel vulnerabilities
2024-04-23 00:00:00
Linux kernel vulnerabilities
2024-04-19 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6742-2)
2024-04-24 00:00:00
Ubuntu: Security Advisory (USN-6742-1)
2024-04-22 00:00:00
Ubuntu: Security Advisory (USN-6741-1)
2024-04-22 00:00:00
osv
osv
linux, linux-aws, linux-aws-5.15, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-gkeop-5.15, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-lowlatency-hwe-5.15, linux-oracle, linux-oracle-5.15, linux-raspi vulnerabilities
2024-04-19 13:51:13
linux-azure, linux-lowlatency, linux-nvidia vulnerabilities
2024-04-23 17:37:06
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-gkeop, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-xilinx-zynqmp vulnerabilities
2024-04-19 13:42:12
mskb
mskb
November 14, 2023—KB5032189 (OS Builds 19044.3693 and 19045.3693)
2024-02-20 08:00:00
November 14, 2023— KB5032304 (OS Build 20348.2091)
2023-11-14 08:00:00
November 14, 2023—KB5032202 (OS Build 25398.531)
2024-02-20 08:00:00
kaspersky
kaspersky
KLA61975 Multiple vulnerabilities in Microsoft Windows
2023-11-14 00:00:00
redhat
redhat
(RHSA-2024:3138) Moderate: kernel security, bug fix, and enhancement update
2024-05-22 06:35:43
(RHSA-2024:2950) Moderate: kernel-rt security and bug fix update
2024-05-22 06:35:10
(RHSA-2024:2394) Important: kernel security, bug fix, and enhancement update
2024-04-30 06:15:35
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2024-05-02 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - November 2023
2023-11-14 21:27:09

7.6 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.9%

JSON
Related for RH:CVE-2023-24023
mscve1debiancve1thn1cve1schneier1ubuntucve1cvelist1prion1nessus14ubuntu5openvas9osv5mskb7kaspersky1redhat4oraclelinux1rapid7blog1