Main Vulnerability Database Vulnerabilities #VU13985

Man-in-the-middle attack in MediaTek products - CVE-2018-5383

Published: July 24, 2018 / Updated: April 1, 2024

Vulnerability identifier: #VU13985

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-5383

CWE-ID: CWE-300

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vendor: MediaTek

Affected software:
MT7668
MT8167S
MT8532
MT8788
MT8518S

Detailed vulnerability description

The vulnerability allows an adjacent attacker to conduct man-in-the-middle attack on the target system.

The weakness exists in the Bluetooth Low Energy (BLE) implementation of Secure Connections mode insufficient validation of elliptic curve parameters that are used to generate public keys during a Diffie-Hellman key exchange when the affected software performs device pairing operations. An adjacent attacker can intercept the public key exchange between the two targeted systems, inject a malicious public key to aid in determining the session key, access sensitive information or forge and modify messages, which could be used to inject malicious software on the targeted system.

How to mitigate CVE-2018-5383

Update to version 10.13.6.

Man-in-the-middle attack in MediaTek products - CVE-2018-5383

Detailed vulnerability description

How to mitigate CVE-2018-5383

Sources

Please verify you're human