HIGHCVE-2026-8676Published Modified CNA Silabs
CVE-2026-8676: An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond
An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond.
Metrics
- CVSS v3.1
- 8.8
- Severity
- HIGH
- Fixed in
- 2024.12.0
- Affected Products
- 1
Fix available
2024.12.0
Affected packages
- silabs.com / Simplicity SDK< 2024.12.0 (from 0)
CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HReferences