mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-09 06:55:56 +02:00
0xMarcio
1.4 KiB
1.4 KiB
CVE-2019-9506
Description
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing.
POC
Reference
Github
- https://github.com/0xT11/CVE-POC
- https://github.com/AlexandrBing/broadcom-bt-firmware
- https://github.com/Charmve/BLE-Security-Attack-Defence
- https://github.com/JeffroMF/awesome-bluetooth-security321
- https://github.com/StealthIQ/awesome-stars
- https://github.com/WinMin/Protocol-Vul
- https://github.com/developer3000S/PoC-in-GitHub
- https://github.com/engn33r/awesome-bluetooth-security
- https://github.com/francozappa/knob
- https://github.com/hectorgie/PoC-in-GitHub
- https://github.com/sgxgsx/BlueToolkit
- https://github.com/u10427687/bluetooth-KNOB
- https://github.com/winterheart/broadcom-bt-firmware