SUSE CVE-2020-26559

Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device participating in the provisioning protocol to identify the AuthValue used given the Provisioner's public key, and the confirmation number and nonce provided by the provisioning device. This could...

SUSE CVE-2020-26560

Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, reflecting the authentication evidence from a Provisioner, to complete authentication without possessing the AuthValue, and potentially acquire a NetKey and AppKey...

UBUNTU-CVE-2020-26559

Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device participating in the provisioning protocol to identify the AuthValue used given the Provisioner’s public key, and the confirmation number and nonce provided by the provisioning device. This could...

UBUNTU-CVE-2020-26560

Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, reflecting the authentication evidence from a Provisioner, to complete authentication without possessing the AuthValue, and potentially acquire a NetKey and AppKey...

Bluetooth Mesh 授权问题漏洞

Bluetooth Mesh is an application. A Bluetooth profile. A security vulnerability in Mesh Provisioning in Bluetooth Mesh profile versions 1.0 and 1.0.1 allows nearby devices to determine the AuthValue via a brute-force attack unless the AuthValue is sufficiently randomized and changed each time...

PT-2021-11248 · Unknown · Bluetooth Mesh

Name of the Vulnerable Software and Affected Versions: Bluetooth Mesh profile versions 1.0 through 1.0.1 Description: The issue allows a nearby device participating in the provisioning protocol to identify the AuthValue used, given the Provisioner's public key, and the confirmation number and non...

PT-2021-11247 · Unknown · Bluetooth Mesh

Name of the Vulnerable Software and Affected Versions: Bluetooth Mesh profile versions 1.0 and 1.0.1 Description: The issue allows a nearby device to potentially determine the AuthValue used in the provisioning protocol via a brute-force attack, unless the AuthValue is sufficiently random and...

Memory Exposure in tunnel-agent

Versions of tunnel-agent before 0.6.0 are vulnerable to memory exposure. This is exploitable if user supplied input is provided to the auth value and is a number. Proof-of-concept: js require'request' method: 'GET', uri: 'http://www.example.com', tunnel: true, proxy: protocol: 'http:',...

GHSA-XC7V-WXCW-J472 Memory Exposure in tunnel-agent

Versions of tunnel-agent before 0.6.0 are vulnerable to memory exposure. This is exploitable if user supplied input is provided to the auth value and is a number. Proof-of-concept: js require'request' method: 'GET', uri: 'http://www.example.com', tunnel: true, proxy: protocol: 'http:',...