Vulnerabilities > Bluetooth > Mesh Profile > High

DATE CVE VULNERABILITY TITLE RISK
2021-05-24 CVE-2020-26556 Improper Restriction of Excessive Authentication Attempts vulnerability in Bluetooth Core Specification and Mesh Profile
Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, able to conduct a successful brute-force attack on an insufficiently random AuthValue before the provisioning procedure times out, to complete authentication by leveraging Malleable Commitment.
high complexity
bluetooth CWE-307
7.5
2021-05-24 CVE-2020-26557 Improper Authentication vulnerability in Bluetooth Mesh Profile 1.0.0/1.0.1
Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (without possession of the AuthValue used in the provisioning protocol) to determine the AuthValue via a brute-force attack (unless the AuthValue is sufficiently random and changed each time).
high complexity
bluetooth CWE-287
7.5
2021-05-24 CVE-2020-26559 Incorrect Authorization vulnerability in Bluetooth Mesh Profile 1.0.0/1.0.1
Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device (participating in the provisioning protocol) to identify the AuthValue used given the Provisioner’s public key, and the confirmation number and nonce provided by the provisioning device.
low complexity
bluetooth CWE-863
8.8
2021-05-24 CVE-2020-26560 Incorrect Authorization vulnerability in Bluetooth Mesh Profile 1.0.0/1.0.1
Bluetooth Mesh Provisioning in the Bluetooth Mesh profile 1.0 and 1.0.1 may permit a nearby device, reflecting the authentication evidence from a Provisioner, to complete authentication without possessing the AuthValue, and potentially acquire a NetKey and AppKey.
low complexity
bluetooth CWE-863
8.1