Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:6 a.m.5 views

CVE-2023-21115

In btmsecencryptchange of btmsec.cc, there is a possible way to downgrade the link key type due to improperly used crypto. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

8.8CVSS7.1AI score0.00105EPSS
Exploits0References1
OSV
OSV
added 2023/06/15 7:15 p.m.6 views

CVE-2023-21115

In btmsecencryptchange of btmsec.cc, there is a possible way to downgrade the link key type due to improperly used crypto. This could lead to paired device escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

8.8CVSS5.9AI score0.00105EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/10/29 12:43 p.m.2 views

hardware: bluetooth: BR/EDR encryption key negotiation attacks (KNOB)

A flaw was discovered in the Bluetooth protocol. An attacker within physical proximity to the Bluetooth connection could downgrade the encryption protocol to be trivially brute forced...

8.1CVSS7.1AI score0.02691EPSS
Exploits2References4
Check Point Advisories
Check Point Advisories
added 2015/05/20 12:0 a.m.7 views

TLS and SSL Diffie-Hellman Key Downgrade Weakness (CVE-2015-1716; CVE-2015-4000)

A vulnerability has been detected in the way TLS protocol handles weak, legacy cipher suites. An attacker might leverage this vulnerability to intercept secure communications...

5CVSS0.8AI score0.9986EPSS
Exploits1
OSV
OSV
added 2015/01/09 2:59 a.m.3 views

DEBIAN-CVE-2015-0204

The ssl3getkeyexchange function in s3clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORTRSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to...

4.3CVSS7.2AI score0.98685EPSS
Exploits0References1
Rows per page
Query Builder