CVE-2020-6616 - CERT CVE
ID CVE-2020-6616
Sažetak Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) should have been used to prevent spoofing. This affects, for example, Samsung Galaxy S8, S8+, and Note8 devices with the BCM4361 chipset. The Samsung ID is SVE-2020-16882 (May 2020).
Reference
CVSS
Base: 3.3
Impact: 2.9
Exploitability:6.5
Pristup
VektorSloženostAutentikacija
ADJACENT_NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE PARTIAL NONE
CVSS vektor AV:A/AC:L/Au:N/C:N/I:P/A:N
Zadnje važnije ažuriranje 09-01-2023 - 16:41
Objavljeno 08-05-2020 - 20:15