Description
The Bluetooth Low Energy implementation in Cypress PSoC Creator BLE 4.2 component versions before 3.64 generates a random number (Pairing Random) with significantly less entropy than the specified 128 bits during BLE pairing. This is the case for both authenticated and unauthenticated pairing with both LE Secure Connections as well as LE Legacy Pairing. A predictable or brute-forceable random number allows an attacker (in radio range) to perform a MITM attack during BLE pairing.
References (1)
Core 1
Core References
Product, Vendor Advisory x_refsource_confirm
https://www.cypress.com/file/504466/download
Scores
CVSS v3
7.5
EPSS
0.0039
EPSS Percentile
31.0%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-331
Status
published
Products (1)
cypress/psoc_4.2_ble
< 3.64
Published
Jun 09, 2020
Tracked Since
Feb 18, 2026