Vulnerability Note VU#304725
Bluetooth implementations may not sufficiently validate elliptic curve parameters during Diffie-Hellman key exchange
Bluetooth firmware or operating system software drivers may not sufficiently validate elliptic curve parameters used to generate public keys during a Diffie-Hellman key exchange, which may allow a remote attacker to obtain the encryption key used by the device.
CWE-325: Missing Required Cryptographic Step - CVE-2018-5383
Bluetooth utilizes a device pairing mechanism based on elliptic-curve Diffie-Hellman (ECDH) key exchange to allow encrypted communication between devices. The ECDH key pair consists of a private and a public key, and the public keys are exchanged to produce a shared pairing key. The devices must also agree on the elliptic curve parameters being used. Previous work on the "Invalid Curve Attack" showed that the ECDH parameters are not always validated before being used in computing the resulted shared key, which reduces attacker effort to obtain the private key of the device under attack if the implementation does not validate all of the parameters before computing the shared key.
An unauthenticated, remote attacker within range may be able to utilize a man-in-the-middle network position to determine the cryptographic keys used by the device. The attacker can then intercept and decrypt and/or forge and inject device messages.
Apply an update
Vendor Information (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Android Open Source Project||Affected||18 Jan 2018||25 Jul 2018|
|Apple||Affected||18 Jan 2018||25 Jul 2018|
|Broadcom||Affected||18 Jan 2018||19 Jun 2018|
|Cypress Semiconductor||Affected||-||17 Aug 2018|
|Dell||Affected||-||30 Jul 2018|
|Affected||19 Mar 2018||25 Jul 2018|
|Intel||Affected||18 Jan 2018||23 Jul 2018|
|QUALCOMM Incorporated||Affected||18 Jan 2018||25 Jul 2018|
|Dell EMC||Not Affected||-||30 Jul 2018|
|Microsoft||Not Affected||06 Feb 2018||20 Jul 2018|
|RSA Security LLC||Not Affected||-||25 Jul 2018|
|Bluetooth SIG||Unknown||06 Feb 2018||06 Feb 2018|
|Linux Kernel||Unknown||05 Mar 2018||05 Mar 2018|
CVSS Metrics (Learn More)
Thanks to Lior Neumann and Eli Biham of th e Techion Israel Institute of Technology for reporting this vulnerability.
This document was written by Garret Wassermann.
- CVE IDs: CVE-2018-5383
- Date Public: 23 Jul 2018
- Date First Published: 23 Jul 2018
- Date Last Updated: 17 Aug 2018
- Document Revision: 79
If you have feedback, comments, or additional information about this vulnerability, please send us email.