CVE-2020-15509

Published: Jul 7, 2020Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

Nordic Semiconductor Android BLE Library through 2.2.1 and DFU Library through 1.10.4 for Android (as used by nRF Connect and other applications) can engage in unencrypted communication while showing the user that the communication is purportedly encrypted. The problem is in bond creation (e.g., internalCreateBond in BleManagerHandler).

Affected (2)

Products: Nordicsemi: Android Ble Library, Dfu Library

2 products

Android Ble Library

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Nordicsemi Android Ble Library	Up to 2.2.1
Nordicsemi Dfu Library	Up to 1.10.4

Related CWEs

Cleartext Transmission of Sensitive Information

The product transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

References (6)

https://github.com/NordicSemiconductor/Android-BLE-Library/commits/master

Source: cve@mitre.org

PatchThird Party Advisory

https://github.com/NordicSemiconductor/Android-DFU-Library/commits/release

Source: cve@mitre.org

PatchThird Party Advisory

https://secretdiary.ninja/index.php/2020/07/03/norec-attack-stripping-ble-encryption-from-nordicsemis-android-library-cve-2020-15509/

Source: cve@mitre.org

PatchThird Party Advisory

https://github.com/NordicSemiconductor/Android-BLE-Library/commits/master

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://github.com/NordicSemiconductor/Android-DFU-Library/commits/release

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://secretdiary.ninja/index.php/2020/07/03/norec-attack-stripping-ble-encryption-from-nordicsemis-android-library-cve-2020-15509/

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

Timeline

No history available yet.