Bluetooth Cryptographic Validation Vulnerability

The Bluetooth core specification uses an elliptic-curve Diffie-Helman (ECDH) based mechanism to pair devices. During pairing, devices will exchange their ECDH public keys to construct a shared key based upon an agreed set of parameters. Some Bluetooth implementations may not correctly validate these parameters, resulting in an improperly formed shared key

An attacker within wireless range of a device may exploit this vulnerability to inject an invalid public key during the pairing process in order to obtain the session key of the user. The attacker would then be able to intercept and decrypt all messages sent by the device as well as perform man-in-the-middle attacks against the user.

This vulnerability is present in all Bluetooth specifications and versions.

For further information

• US-CERT Vulnerability Note VU#304725
• Breaking the Bluetooth Pairing - Fixed Coordinate Invalid Curve Attack research paper (Biham & Neumann, 2018)
• Bluetooth SIG Security Update July 23, 2018
• CWE-325: Missing Required Cryptographic Step
• CVE-2018-5383