Vulnerabilities > CVE-2022-38788 - Unspecified vulnerability in Nokia Fastmile 5G Receiver Firmware 1.2104.00.0281

CVSS 4.3 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

low complexity

nokia

NVD

Published: 2022-09-15

Updated: 2022-09-20

Summary

An issue was discovered in Nokia FastMile 5G Receiver 5G14-B 1.2104.00.0281. Bluetooth on the Nokia ODU uses outdated pairing mechanisms, allowing an attacker to passively intercept a paring handshake and (after offline cracking) retrieve the PIN and LTK (long-term key).

Vulnerable Configurations

Part	Description	Count
OS	Nokia Nokia Fastmile 5G Receiver Firmware 1.2104.00.0281	1
Hardware	Nokia Nokia Fastmile 5G Receiver -	1

References

https://github.com/ProxyStaffy/Nokia-FastMile-5G-Receiver-5G14-B
https://www.nokia.com/notices/responsible-disclosure/