Vulnerabilities > CVE-2019-19194 - Unspecified vulnerability in Telink-Semi products

CVSS 5.8 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

low complexity

telink-semi

NVD

Published: 2020-02-12

Updated: 2020-08-24

Summary

The Bluetooth Low Energy Secure Manager Protocol (SMP) implementation on Telink Semiconductor BLE SDK versions before November 2019 for TLSR8x5x through 3.4.0, TLSR823x through 1.3.0, and TLSR826x through 3.3 devices installs a zero long term key (LTK) if an out-of-order link-layer encryption request is received during Secure Connections pairing. An attacker in radio range can have arbitrary read/write access to protected GATT service data, cause a device crash, or possibly control a device's function by establishing an encrypted session with the zero LTK.

Vulnerable Configurations

Part	Description	Count
Application	Telink-Semi Telink Semi Tlsr8258 BLE SDK * Telink Semi Tlsr8269 BLE SDK * Telink Semi Tlsr8253 BLE SDK * Telink Semi Tlsr8251 BLE SDK * Telink Semi Tlsr8232 BLE SDK *	5
Hardware	Telink-Semi Telink Semi Tlsr8258 - Telink Semi Tlsr8269 - Telink Semi Tlsr8253 - Telink Semi Tlsr8251 - Telink Semi Tlsr8232 -	5

The Hacker News

id	THN:30112B21ABB00D5BD0329A813BB14C45
last seen	2020-02-17
modified	2020-02-17
published	2020-02-17
reporter	The Hacker News
source	https://thehackernews.com/2020/02/hacking-bluetooth-vulnerabilities.html
title	A Dozen Vulnerabilities Affect Millions of Bluetooth LE Powered Devices

Summary

Vulnerable Configurations

The Hacker News

References