CVE-2020-6616
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
08/05/2020
Last modified:
09/01/2023
Description
Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) should have been used to prevent spoofing. This affects, for example, Samsung Galaxy S8, S8+, and Note8 devices with the BCM4361 chipset. The Samsung ID is SVE-2020-16882 (May 2020).
Impact
Base Score 3.x
6.50
Severity 3.x
MEDIUM
Base Score 2.0
3.30
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:google:android:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:samsung:galaxy_note8:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:samsung:galaxy_s8:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:samsung:galaxy_s8_plus:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:* | 13.5 (excluding) | |
| cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* | 13.5 (excluding) | |
| cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* | 10.13.0 (including) | 10.13.6 (excluding) |
| cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* | 10.14.0 (including) | 10.14.6 (excluding) |
| cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* | 10.15 (including) | 10.15.4 (excluding) |
| cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2018-002:*:*:*:*:*:* | ||
| cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2018-003:*:*:*:*:*:* | ||
| cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-001:*:*:*:*:*:* | ||
| cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-002:*:*:*:*:*:* | ||
| cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-003:*:*:*:*:*:* | ||
| cpe:2.3:o:apple:mac_os_x:10.13.6:security_update_2019-004:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://bluetooth.lol
- http://seclists.org/fulldisclosure/2020/May/49
- https://github.com/seemoo-lab/internalblue/blob/master/doc/rng.md
- https://media.ccc.de/v/DiVOC-6-finding_eastereggs_in_broadcom_s_bluetooth_random_number_generator
- https://security.samsungmobile.com/securityUpdate.smsb
- https://support.apple.com/HT211168
- https://support.apple.com/kb/HT211100
- https://support.apple.com/kb/HT211168
- https://twitter.com/naehrdine/status/1255980443368919045
- https://twitter.com/naehrdine/status/1255981245147877377