CVE-2019-9506: Blutooth BR/EDR specification does not specify sufficient encryption key length and allows an attacker to influence key length negotiation
Published Jul 8, 2019
·Updated
A flaw was discovered in the Bluetooth protocol. An attacker within physical proximity to the Bluetooth connection could downgrade the encryption protocol to be trivially brute forced.
Other sources
Bluetooth. An input validation issue existed in Bluetooth. This issue was addressed with improved input validation.
The Bluetooth BR/EDR encryption key negotiation protocol is vulnerable to packet injection that could allow an unauthenticated user to decrease the size of the entropy of the encryption key, potentially causing information disclosure and/or escalation of privileges via adjacent access. There is not currently any knowledge of this being exploited.
Note:
Not all bluetooth devices are vulnerable to this flaw. Only devices that can connect to another using BR/EDR encryption negotiation protocol.
CERT notification: https://kb.cert.org/vuls/id/918987/
Upstream patches: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d5bb334a8e171b262e48f378bd2096c0ea458265 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=693cd8ce3f882524a5d06f7800dd8492411877b3 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=eca94432934fe5f141d084f2e36ee2c0e614cc04
Branded site: https://knobattack.com/
— Red Hat
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing.
Credit
Daniele Antonioli(SUTD), Singapore, Dr. Nils Ole Tippenhauer(CISPA), Germany, Pr(University of Oxford), England
Affected Software
679 affected componentsFixes available
redhat/kernel-rt<0:3.10.0-1062.4.1.rt56.1027.el7
0:3.10.0-1062.4.1.rt56.1027.el7
redhat/kernel<0:3.10.0-1062.4.1.el7
0:3.10.0-1062.4.1.el7
redhat/kernel-alt<0:4.14.0-115.14.1.el7a
0:4.14.0-115.14.1.el7a
redhat/kernel<0:3.10.0-327.86.1.el7
0:3.10.0-327.86.1.el7
redhat/kernel<0:3.10.0-514.70.1.el7
0:3.10.0-514.70.1.el7
redhat/kernel<0:3.10.0-693.60.1.el7
0:3.10.0-693.60.1.el7
redhat/kernel<0:3.10.0-862.43.1.el7
0:3.10.0-862.43.1.el7
redhat/kernel<0:3.10.0-957.38.1.el7
0:3.10.0-957.38.1.el7
redhat/kernel-rt<0:4.18.0-147.rt24.93.el8
0:4.18.0-147.rt24.93.el8
redhat/kernel<0:4.18.0-147.el8
0:4.18.0-147.el8
redhat/kernel<0:4.18.0-80.15.1.el8_0
0:4.18.0-80.15.1.el8_0
redhat/kernel-rt<1:3.10.0-693.60.1.rt56.654.el6
1:3.10.0-693.60.1.rt56.654.el6
Apple tvOS<12.4
12.4
Apple macOS Mojave<10.14.6
10.14.6
Apple High Sierra
Apple Sierra
Apple WatchOS<5.3
5.3
Google Android
Apple iOS<12.4
12.4
Google Android
BlackBerry Blackberry
Apple iPhone OS=12.4
Apple iOS and macOS=10.12.6
Apple iOS and macOS=10.13.6
Apple iOS and macOS=10.14.5
Apple tvOS=12.4
Apple WatchOS=5.3
Canonical Ubuntu Linux=16.04
Canonical Ubuntu Linux=18.04
Canonical Ubuntu Linux=19.04
Debian Debian Linux=8.0
openSUSE Leap=15.0
openSUSE Leap=15.1
redhat Mrg Realtime=2.0
redhat Virtualization Host Eus=4.2
redhat Enterprise Linux=8.0
redhat Enterprise Linux Aus=7.5
redhat Enterprise Linux Eus=7.6
redhat Enterprise Linux Eus=7.7
redhat Enterprise Linux Eus=8.1
redhat Enterprise Linux Eus=8.2
redhat Enterprise Linux Eus=8.4
redhat Enterprise Linux For Real Time=7
redhat Enterprise Linux For Real Time=8
redhat Enterprise Linux For Real Time Eus=8.2
redhat Enterprise Linux For Real Time Eus=8.4
redhat Enterprise Linux For Real Time For Nfv=7
redhat Enterprise Linux For Real Time For Nfv=8
redhat Enterprise Linux For Real Time For Nfv Eus=8.2
redhat Enterprise Linux For Real Time For Nfv Eus=8.4
redhat Enterprise Linux Server=7.0
redhat Enterprise Linux Server Aus=7.3
redhat Enterprise Linux Server Aus=7.4
redhat Enterprise Linux Server Aus=7.6
redhat Enterprise Linux Server Aus=7.7
redhat Enterprise Linux Server Aus=8.2
redhat Enterprise Linux Server Aus=8.4
redhat Enterprise Linux Server Tus=7.3
redhat Enterprise Linux Server Tus=7.4
redhat Enterprise Linux Server Tus=7.6
redhat Enterprise Linux Server Tus=7.7
redhat Enterprise Linux Server Tus=8.2
redhat Enterprise Linux Server Tus=8.4
redhat Enterprise Linux Tus=7.6
Huawei Alp-al00b Firmware<9.1.0.333\(c00e333r2p1t8\)
Huawei ALP-AL00B
Huawei Ares-al00b Firmware<9.1.0.160\(c00e160r2p5t8\)
Huawei Ares-al00b
Huawei Ares-al10d Firmware<9.1.0.160\(c00e160r2p5t8\)
Huawei Ares-al10d
Huawei Ares-tl00c Firmware<9.1.0.165\(c01e165r2p5t8\)
Huawei Ares-tl00c
Huawei Asoka-al00ax Firmware<9.1.1.181\(c00e48r6p1\)
Huawei Asoka-al00ax
Huawei Atomu-l33 Firmware<8.0.0.147\(c605custc605d1\)
Huawei Atomu-l33
Huawei Atomu-l41 Firmware<8.0.0.153\(c461custc461d1\)
Huawei Atomu-l41
Huawei Atomu-l42 Firmware<8.0.0.155\(c636custc636d1\)
Huawei Atomu-l42
Huawei Bla-al00b Firmware<9.1.0.329\(c786e320r2p1t8\)
Huawei BLA-AL00B
Huawei Bla-l29c Firmware<9.1.0.300\(c605e2r1p12t8\)
Huawei BLA-L29C
Huawei Bla-tl00b Firmware<9.1.0.329\(c01e320r1p1t8\)
Huawei BLA-TL00B
Huawei Barca-al00 Firmware<8.0.0.366\(c00\)
Huawei Barca-al00
Huawei Berkeley-al20 Firmware<9.1.0.333\(c00e333r2p1t8\)
Huawei Berkeley-AL20
Huawei Berkeley-l09 Firmware<9.1.0.332\(c432e5r1p13t8\)
Huawei Berkeley-L09
Huawei Berkeley-tl10 Firmware<9.1.0.333\(c01e333r1p1t8\)
Huawei Berkeley-tl10
Huawei Cairogo-l22 Firmware<cairogo-l22c461b153
Huawei Cairogo-l22
Huawei Charlotte-l29c Firmware<9.1.0.311\(c605e2r1p11t8\)
Huawei Charlotte-L29C
Huawei Columbia-al10b Firmware<9.1.0.333\(c00e333r1p1t8\)
Huawei Columbia-AL10B
Huawei Columbia-al10i Firmware<9.1.0.335\(c675e8r1p9t8\)
Huawei Columbia-al10i
Huawei Columbia-l29d Firmware<9.1.0.350\(c10e5r1p14t8\)
Huawei Columbia-L29D
Huawei Columbia-tl00d Firmware<8.1.0.186\(c01gt\)
Huawei Columbia-tl00d
Huawei Cornell-al00a Firmware<9.1.0.333\(c00e333r1p1t8\)
Huawei Cornell-AL00A
Huawei Cornell-al00i Firmware<9.1.0.363\(c675e3r1p9t8\)
Huawei Cornell-al00i
Huawei Cornell-al00ind Firmware<8.2.0.141\(c675custc675d1gt\)
Huawei Cornell-al00ind
Huawei Cornell-al10ind Firmware<9.1.0.363\(c675e2r1p9t8\)
Huawei Cornell-al10ind
Huawei Cornell-l29a Firmware<9.1.0.336\(c636e2r1p12t8\)
Huawei Cornell-L29A
Huawei Cornell-tl10b Firmware<9.1.0.333\(c01e333r1p1t8\)
Huawei Cornell-tl10b
Huawei Dubai-al00a Firmware<8.2.0.190\(c00r2p2\)
Huawei Dubai-al00a
Huawei Dura-al00a Firmware<1.0.0.182\(c00\)
Huawei Dura-al00a
Huawei Dura-tl00a Firmware<1.0.0.176\(c01\)
Huawei Dura-tl00a
Huawei Emily-l29c Firmware=8.1.0.156\(c605\)
Huawei Emily-L29C
Huawei Ever-l29b Firmware<9.1.0.338\(c185e3r3p1\)
Huawei Ever-L29B
Huawei Figo-l23 Firmware<9.1.0.160\(c605e6r1p5t8\)
Huawei Figo-l23
Huawei Figo-l31 Firmware=8.0.0.122d\(c652\)
Huawei Figo-l31
Huawei Figo-tl10b Firmware<9.1.0.130\(c01e115r2p8t8\)
Huawei Figo-tl10b
Huawei Florida-al20b Firmware<9.1.0.128\(c00e112r1p6t8\)
Huawei Florida-al20b
Huawei Florida-l21 Firmware<9.1.0.150\(c185e6r1p5t8\)
Huawei Florida-l21
Huawei Florida-l22 Firmware<9.1.0.150\(c636e6r1p5t8\)
Huawei Florida-l22
Huawei Florida-l23 Firmware<9.1.0.154\(c605e7r1p2t8\)
Huawei Florida-l23
Huawei Florida-tl10b Firmware<9.1.0.128\(c01e112r1p6t8\)
Huawei Florida-tl10b
Huawei Honor 20 Firmware<9.1.0.143\(c675e8r2p1\)
Huawei Honor 20
Huawei Honor 20 Pro Firmware<9.1.0.154\(c185e2r5p1\)
Huawei HONOR 20 PRO
Huawei Mate 20 Firmware
Huawei Mate 20
Huawei Mate 20 Pro Firmware
Huawei Mate 20 Pro
Huawei Mate 20 X Firmware
Huawei Mate 20 X
Huawei P Smart Firmware
Huawei P Smart
Huawei P Smart 2019 Firmware
Huawei P Smart 2019
Huawei P20 Firmware
Huawei P20
Huawei P20 Pro Firmware
Huawei P20 Pro
Huawei P30 Firmware
Huawei P30
Huawei P30 Pro Firmware
Huawei P30 Pro
Huawei Y5 2018 Firmware
Huawei Y5 2018
Huawei Y5 Lite Firmware
Huawei Y5 Lite
Huawei Y6 2019 Firmware
Huawei Y6 2019
Huawei Y6 Prime 2018 Firmware
Huawei Y6 Prime 2018
Huawei Y6 Pro 2019 Firmware
Huawei Y6 Pro 2019
Huawei Y7 2019 Firmware
Huawei Y7 2019
Huawei Y9 2019 Firmware
Huawei Y9 2019
Huawei Nova 3 Firmware
Huawei Nova 3
Huawei Nova 4 Firmware
Huawei nova 4
Huawei Nova 5 Firmware
Huawei Nova 5
Huawei Nova 5i Pro Firmware
Huawei Nova 5i Pro
Huawei Nova Lite 3 Firmware
Huawei nova lite 3
Huawei Harry-al00c Firmware
Huawei Harry-al00c
Huawei Harry-al10b Firmware
Huawei Harry-al10b
Huawei Harry-tl00c Firmware
Huawei Harry-tl00c
Huawei Hima-l29c Firmware
Huawei Hima-L29C
Huawei Honor 10 Lite Firmware
Huawei Honor 10 Lite
Huawei Honor 8a Firmware
Huawei Honor 8A
Huawei Honor 8x Firmware
Huawei Honor 8X
Huawei Honor View 10 Firmware
Huawei Honor View 10
Huawei Honor View 20 Firmware
Huawei Honor View 20
Huawei Jakarta-al00a Firmware
Huawei Jakarta-al00a
Huawei Johnson-tl00d Firmware
Huawei Johnson-tl00d
Huawei Johnson-tl00f Firmware
Huawei Johnson-tl00f
Huawei Katyusha-al00a Firmware
Huawei Katyusha-al00a
Huawei Laya-al00ep Firmware
Huawei Laya-AL00EP
Huawei Leland-l21a Firmware
Huawei Leland-l21a
Huawei Leland-l31a Firmware
Huawei Leland-l31a
Huawei Leland-l32a Firmware
Huawei Leland-l32a
Huawei Leland-l32c Firmware
Huawei Leland-l32c
Huawei Leland-l42a Firmware
Huawei Leland-l42a
Huawei Leland-l42c Firmware
Huawei Leland-l42c
Huawei Leland-tl10b Firmware
Huawei Leland-tl10b
Huawei Leland-tl10c Firmware
Huawei Leland-tl10c
Huawei Lelandp-al00c Firmware
Huawei Lelandp-al00c
Huawei Lelandp-al10b Firmware
Huawei Lelandp-al10b
Huawei Lelandp-al10d Firmware
Huawei Lelandp-al10d
Huawei Lelandp-l22a Firmware
Huawei LelandP-L22A
Huawei Lelandp-l22c Firmware
Huawei LelandP-L22C
Huawei Lelandp-l22d Firmware
Huawei LelandP-L22D
Huawei London-al40ind Firmware
Huawei London-al40ind
Huawei Madrid-al00a Firmware
Huawei Madrid-al00a
Huawei Madrid-tl00a Firmware
Huawei Madrid-tl00a
Huawei Neo-al00d Firmware
Huawei NEO-AL00D
Huawei Paris-al00ic Firmware
Huawei Paris-al00ic
Huawei Paris-l21b Firmware
Huawei Paris-L21B
Huawei Paris-l21meb Firmware
Huawei Paris-L21MEB
Huawei Paris-l29b Firmware
Huawei Paris-L29B
Huawei Potter-al00c Firmware
Huawei Potter-al00c
Huawei Potter-al10a Firmware
Huawei Potter-al10a
Huawei Princeton-al10b Firmware
Huawei Princeton-AL10B
Huawei Princeton-al10d Firmware
Huawei Princeton-al10d
Huawei Princeton-tl10c Firmware
Huawei Princeton-tl10c
Huawei Sydney-al00 Firmware
Huawei Sydney-AL00
Huawei Sydney-l21 Firmware
Huawei Sydney-L21
Huawei Sydney-l21br Firmware
Huawei Sydney-L21BR
Huawei Sydney-l22 Firmware
Huawei Sydney-L22
Huawei Sydney-l22br Firmware
Huawei Sydney-L22BR
Huawei Sydney-tl00 Firmware
Huawei Sydney-tl00
Huawei Sydneym-al00 Firmware
Huawei SydneyM-AL00
Huawei Sydneym-l01 Firmware
Huawei SydneyM-L01
Huawei Sydneym-l03 Firmware
Huawei SydneyM-L03
Huawei Sydneym-l21 Firmware
Huawei SydneyM-L21
Huawei Sydneym-l22 Firmware
Huawei SydneyM-L22
Huawei Sydneym-l23 Firmware
Huawei SydneyM-L23
Huawei Tony-al00b Firmware
Huawei Tony-AL00B
Huawei Tony-tl00b Firmware
Huawei Tony-TL00B
Huawei Yale-al00a Firmware
Huawei Yale-al00a
Huawei Yale-al50a Firmware
Huawei Yale-al50a
Huawei Yale-l21a Firmware
Huawei Yale-L21A
Huawei Yale-l61c Firmware
Huawei Yale-l61c
Huawei Yale-tl00b Firmware
Huawei Yale-TL00B
Huawei Yalep-al10b Firmware
Huawei YaleP-AL10B
Huawei Imanager Neteco Firmware
Huawei iManager NetEco
Huawei Imanager Neteco 6000 Firmware
Huawei iManager NetEco 6000
Huawei Bla-l29c Firmware<9.1.0.306\(c185e2r1p13t8\)
Huawei Bla-l29c Firmware<9.1.0.306\(c432e4r1p11t8\)
Huawei Bla-l29c Firmware<9.1.0.306\(c636e2r1p13t8\)
Huawei Bla-l29c Firmware<9.1.0.307\(c635e4r1p13t8\)
Huawei Berkeley-l09 Firmware<9.1.0.350\(c10e3r1p14t8\)
Huawei Berkeley-l09 Firmware<9.1.0.350\(c636e4r1p13t8\)
Huawei Charlotte-l29c Firmware<9.1.0.325\(c185e4r1p11t8\)
Huawei Charlotte-l29c Firmware<9.1.0.325\(c636e2r1p12t8\)
Huawei Charlotte-l29c Firmware<9.1.0.328\(c432e5r1p9t8\)
Huawei Charlotte-l29c Firmware<9.1.0.328\(c782e10r1p9t8\)
Huawei Columbia-l29d Firmware<9.1.0.350\(c185e3r1p12t8\)
Huawei Columbia-l29d Firmware<9.1.0.350\(c461e3r1p11t8\)
Huawei Columbia-l29d Firmware<9.1.0.350\(c636e3r1p13t8\)
Huawei Columbia-l29d Firmware<9.1.0.351\(c432e5r1p13t8\)
Huawei Cornell-l29a Firmware<9.1.0.341\(c185e1r1p9t8\)
Huawei Cornell-l29a Firmware<9.1.0.342\(c461e1r1p9t8\)
Huawei Cornell-l29a Firmware<9.1.0.347\(c432e1r1p9t8\)
Huawei Emily-l29c Firmware<9.1.0.311\(c461e2r1p11t8\)
Huawei Emily-l29c Firmware<9.1.0.325\(c185e2r1p12t8\)
Huawei Emily-l29c Firmware<9.1.0.325\(c636e7r1p13t8\)
Huawei Emily-l29c Firmware<9.1.0.326\(c635e2r1p11t8\)
Huawei Emily-l29c Firmware<9.1.0.328\(c432e7r1p11t8\)
Huawei Figo-l31 Firmware<9.1.0.122\(c09e7r1p5t8\)
Huawei Figo-l31 Firmware<9.1.0.137\(c33e8r1p5t8\)
Huawei Figo-l31 Firmware<9.1.0.137\(c530e8r1p5t8\)
Huawei Figo-l31 Firmware<9.1.0.158\(c432e8r1p5t8\)
Huawei Figo-l31 Firmware<9.1.0.165\(c10e8r1p5t8\)
Huawei Florida-l21 Firmware<9.1.0.150\(c432e6r1p5t8\)
Huawei Honor 20 Firmware<9.1.0.149\(c675e8r2p1\)
Huawei Honor 20 Pro Firmware<9.1.0.154\(c432e2r5p1\)
Huawei Honor 20 Pro Firmware<9.1.0.154\(c636e2r3p1\)
Huawei Honor 20 Pro Firmware<9.1.0.155\(c10e2r3p1\)
Huawei Honor 20 Pro Firmware<9.1.0.170\(c185e2r5p1\)
Huawei Honor 20 Pro Firmware<9.1.0.170\(c636e2r3p1\)
Huawei Honor 20 Pro Firmware<9.1.0.171\(c10e2r3p1\)
Huawei Honor 20 Pro Firmware<9.1.0.172\(c432e2r5p1\)
All of the following
Google Android
BlackBerry Blackberry
All of the following
Huawei Alp-al00b Firmware<9.1.0.333\(c00e333r2p1t8\)
Huawei ALP-AL00B
All of the following
Huawei Ares-al00b Firmware<9.1.0.160\(c00e160r2p5t8\)
Huawei Ares-al00b
All of the following
Huawei Ares-al10d Firmware<9.1.0.160\(c00e160r2p5t8\)
Huawei Ares-al10d
All of the following
Huawei Ares-tl00c Firmware<9.1.0.165\(c01e165r2p5t8\)
Huawei Ares-tl00c
All of the following
Huawei Asoka-al00ax Firmware<9.1.1.181\(c00e48r6p1\)
Huawei Asoka-al00ax
All of the following
Huawei Atomu-l33 Firmware<8.0.0.147\(c605custc605d1\)
Huawei Atomu-l33
All of the following
Huawei Atomu-l41 Firmware<8.0.0.153\(c461custc461d1\)
Huawei Atomu-l41
All of the following
Huawei Atomu-l42 Firmware<8.0.0.155\(c636custc636d1\)
Huawei Atomu-l42
All of the following
Huawei Bla-al00b Firmware<9.1.0.329\(c786e320r2p1t8\)
Huawei BLA-AL00B
All of the following
Huawei Bla-l29c Firmware<9.1.0.300\(c605e2r1p12t8\)
Huawei BLA-L29C
All of the following
Huawei Bla-tl00b Firmware<9.1.0.329\(c01e320r1p1t8\)
Huawei BLA-TL00B
All of the following
Huawei Barca-al00 Firmware<8.0.0.366\(c00\)
Huawei Barca-al00
All of the following
Huawei Berkeley-al20 Firmware<9.1.0.333\(c00e333r2p1t8\)
Huawei Berkeley-AL20
All of the following
Huawei Berkeley-l09 Firmware<9.1.0.332\(c432e5r1p13t8\)
Huawei Berkeley-L09
All of the following
Huawei Berkeley-tl10 Firmware<9.1.0.333\(c01e333r1p1t8\)
Huawei Berkeley-tl10
All of the following
Huawei Cairogo-l22 Firmware<cairogo-l22c461b153
Huawei Cairogo-l22
All of the following
Huawei Charlotte-l29c Firmware<9.1.0.311\(c605e2r1p11t8\)
Huawei Charlotte-L29C
All of the following
Huawei Columbia-al10b Firmware<9.1.0.333\(c00e333r1p1t8\)
Huawei Columbia-AL10B
All of the following
Huawei Columbia-al10i Firmware<9.1.0.335\(c675e8r1p9t8\)
Huawei Columbia-al10i
All of the following
Huawei Columbia-l29d Firmware<9.1.0.350\(c10e5r1p14t8\)
Huawei Columbia-L29D
All of the following
Huawei Columbia-tl00d Firmware<8.1.0.186\(c01gt\)
Huawei Columbia-tl00d
All of the following
Huawei Cornell-al00a Firmware<9.1.0.333\(c00e333r1p1t8\)
Huawei Cornell-AL00A
All of the following
Huawei Cornell-al00i Firmware<9.1.0.363\(c675e3r1p9t8\)
Huawei Cornell-al00i
All of the following
Huawei Cornell-al00ind Firmware<8.2.0.141\(c675custc675d1gt\)
Huawei Cornell-al00ind
All of the following
Huawei Cornell-al10ind Firmware<9.1.0.363\(c675e2r1p9t8\)
Huawei Cornell-al10ind
All of the following
Huawei Cornell-l29a Firmware<9.1.0.336\(c636e2r1p12t8\)
Huawei Cornell-L29A
All of the following
Huawei Cornell-tl10b Firmware<9.1.0.333\(c01e333r1p1t8\)
Huawei Cornell-tl10b
All of the following
Huawei Dubai-al00a Firmware<8.2.0.190\(c00r2p2\)
Huawei Dubai-al00a
All of the following
Huawei Dura-al00a Firmware<1.0.0.182\(c00\)
Huawei Dura-al00a
All of the following
Huawei Dura-tl00a Firmware<1.0.0.176\(c01\)
Huawei Dura-tl00a
All of the following
Huawei Emily-l29c Firmware=8.1.0.156\(c605\)
Huawei Emily-L29C
All of the following
Huawei Ever-l29b Firmware<9.1.0.338\(c185e3r3p1\)
Huawei Ever-L29B
All of the following
Huawei Figo-l23 Firmware<9.1.0.160\(c605e6r1p5t8\)
Huawei Figo-l23
All of the following
Huawei Figo-l31 Firmware=8.0.0.122d\(c652\)
Huawei Figo-l31
All of the following
Huawei Figo-tl10b Firmware<9.1.0.130\(c01e115r2p8t8\)
Huawei Figo-tl10b
All of the following
Huawei Florida-al20b Firmware<9.1.0.128\(c00e112r1p6t8\)
Huawei Florida-al20b
All of the following
Huawei Florida-l21 Firmware<9.1.0.150\(c185e6r1p5t8\)
Huawei Florida-l21
All of the following
Huawei Florida-l22 Firmware<9.1.0.150\(c636e6r1p5t8\)
Huawei Florida-l22
All of the following
Huawei Florida-l23 Firmware<9.1.0.154\(c605e7r1p2t8\)
Huawei Florida-l23
All of the following
Huawei Florida-tl10b Firmware<9.1.0.128\(c01e112r1p6t8\)
Huawei Florida-tl10b
All of the following
Huawei Honor 20 Firmware<9.1.0.143\(c675e8r2p1\)
Huawei Honor 20
All of the following
Huawei Honor 20 Pro Firmware<9.1.0.154\(c185e2r5p1\)
Huawei HONOR 20 PRO
All of the following
Huawei Mate 20 Firmware
Huawei Mate 20
All of the following
Huawei Mate 20 Pro Firmware
Huawei Mate 20 Pro
All of the following
Huawei Mate 20 X Firmware
Huawei Mate 20 X
All of the following
Huawei P Smart Firmware
Huawei P Smart
All of the following
Huawei P Smart 2019 Firmware
Huawei P Smart 2019
All of the following
Huawei P20 Firmware
Huawei P20
All of the following
Huawei P20 Pro Firmware
Huawei P20 Pro
All of the following
Huawei P30 Firmware
Huawei P30
All of the following
Huawei P30 Pro Firmware
Huawei P30 Pro
All of the following
Huawei Y5 2018 Firmware
Huawei Y5 2018
All of the following
Huawei Y5 Lite Firmware
Huawei Y5 Lite
All of the following
Huawei Y6 2019 Firmware
Huawei Y6 2019
All of the following
Huawei Y6 Prime 2018 Firmware
Huawei Y6 Prime 2018
All of the following
Huawei Y6 Pro 2019 Firmware
Huawei Y6 Pro 2019
All of the following
Huawei Y7 2019 Firmware
Huawei Y7 2019
All of the following
Huawei Y9 2019 Firmware
Huawei Y9 2019
All of the following
Huawei Nova 3 Firmware
Huawei Nova 3
All of the following
Huawei Nova 4 Firmware
Huawei nova 4
All of the following
Huawei Nova 5 Firmware
Huawei Nova 5
All of the following
Huawei Nova 5i Pro Firmware
Huawei Nova 5i Pro
All of the following
Huawei Nova Lite 3 Firmware
Huawei nova lite 3
All of the following
Huawei Harry-al00c Firmware
Huawei Harry-al00c
All of the following
Huawei Harry-al10b Firmware
Huawei Harry-al10b
All of the following
Huawei Harry-tl00c Firmware
Huawei Harry-tl00c
All of the following
Huawei Hima-l29c Firmware
Huawei Hima-L29C
All of the following
Huawei Honor 10 Lite Firmware
Huawei Honor 10 Lite
All of the following
Huawei Honor 8a Firmware
Huawei Honor 8A
All of the following
Huawei Honor 8x Firmware
Huawei Honor 8X
All of the following
Huawei Honor View 10 Firmware
Huawei Honor View 10
All of the following
Huawei Honor View 20 Firmware
Huawei Honor View 20
All of the following
Huawei Jakarta-al00a Firmware
Huawei Jakarta-al00a
All of the following
Huawei Johnson-tl00d Firmware
Huawei Johnson-tl00d
All of the following
Huawei Johnson-tl00f Firmware
Huawei Johnson-tl00f
All of the following
Huawei Katyusha-al00a Firmware
Huawei Katyusha-al00a
All of the following
Huawei Laya-al00ep Firmware
Huawei Laya-AL00EP
All of the following
Huawei Leland-l21a Firmware
Huawei Leland-l21a
All of the following
Huawei Leland-l31a Firmware
Huawei Leland-l31a
All of the following
Huawei Leland-l32a Firmware
Huawei Leland-l32a
All of the following
Huawei Leland-l32c Firmware
Huawei Leland-l32c
All of the following
Huawei Leland-l42a Firmware
Huawei Leland-l42a
All of the following
Huawei Leland-l42c Firmware
Huawei Leland-l42c
All of the following
Huawei Leland-tl10b Firmware
Huawei Leland-tl10b
All of the following
Huawei Leland-tl10c Firmware
Huawei Leland-tl10c
All of the following
Huawei Lelandp-al00c Firmware
Huawei Lelandp-al00c
All of the following
Huawei Lelandp-al10b Firmware
Huawei Lelandp-al10b
All of the following
Huawei Lelandp-al10d Firmware
Huawei Lelandp-al10d
All of the following
Huawei Lelandp-l22a Firmware
Huawei LelandP-L22A
All of the following
Huawei Lelandp-l22c Firmware
Huawei LelandP-L22C
All of the following
Huawei Lelandp-l22d Firmware
Huawei LelandP-L22D
All of the following
Huawei London-al40ind Firmware
Huawei London-al40ind
All of the following
Huawei Madrid-al00a Firmware
Huawei Madrid-al00a
All of the following
Huawei Madrid-tl00a Firmware
Huawei Madrid-tl00a
All of the following
Huawei Neo-al00d Firmware
Huawei NEO-AL00D
All of the following
Huawei Paris-al00ic Firmware
Huawei Paris-al00ic
All of the following
Huawei Paris-l21b Firmware
Huawei Paris-L21B
All of the following
Huawei Paris-l21meb Firmware
Huawei Paris-L21MEB
All of the following
Huawei Paris-l29b Firmware
Huawei Paris-L29B
All of the following
Huawei Potter-al00c Firmware
Huawei Potter-al00c
All of the following
Huawei Potter-al10a Firmware
Huawei Potter-al10a
All of the following
Huawei Princeton-al10b Firmware
Huawei Princeton-AL10B
All of the following
Huawei Princeton-al10d Firmware
Huawei Princeton-al10d
All of the following
Huawei Princeton-tl10c Firmware
Huawei Princeton-tl10c
All of the following
Huawei Sydney-al00 Firmware
Huawei Sydney-AL00
All of the following
Huawei Sydney-l21 Firmware
Huawei Sydney-L21
All of the following
Huawei Sydney-l21br Firmware
Huawei Sydney-L21BR
All of the following
Huawei Sydney-l22 Firmware
Huawei Sydney-L22
All of the following
Huawei Sydney-l22br Firmware
Huawei Sydney-L22BR
All of the following
Huawei Sydney-tl00 Firmware
Huawei Sydney-tl00
All of the following
Huawei Sydneym-al00 Firmware
Huawei SydneyM-AL00
All of the following
Huawei Sydneym-l01 Firmware
Huawei SydneyM-L01
All of the following
Huawei Sydneym-l03 Firmware
Huawei SydneyM-L03
All of the following
Huawei Sydneym-l21 Firmware
Huawei SydneyM-L21
All of the following
Huawei Sydneym-l22 Firmware
Huawei SydneyM-L22
All of the following
Huawei Sydneym-l23 Firmware
Huawei SydneyM-L23
All of the following
Huawei Tony-al00b Firmware
Huawei Tony-AL00B
All of the following
Huawei Tony-tl00b Firmware
Huawei Tony-TL00B
All of the following
Huawei Yale-al00a Firmware
Huawei Yale-al00a
All of the following
Huawei Yale-al50a Firmware
Huawei Yale-al50a
All of the following
Huawei Yale-l21a Firmware
Huawei Yale-L21A
All of the following
Huawei Yale-l61c Firmware
Huawei Yale-l61c
All of the following
Huawei Yale-tl00b Firmware
Huawei Yale-TL00B
All of the following
Huawei Yalep-al10b Firmware
Huawei YaleP-AL10B
All of the following
Huawei Imanager Neteco Firmware
Huawei iManager NetEco
All of the following
Huawei Imanager Neteco 6000 Firmware
Huawei iManager NetEco 6000
All of the following
Huawei Bla-l29c Firmware<9.1.0.306\(c185e2r1p13t8\)
Huawei BLA-L29C
All of the following
Huawei Bla-l29c Firmware<9.1.0.306\(c432e4r1p11t8\)
Huawei BLA-L29C
All of the following
Huawei Bla-l29c Firmware<9.1.0.306\(c636e2r1p13t8\)
Huawei BLA-L29C
All of the following
Huawei Bla-l29c Firmware<9.1.0.307\(c635e4r1p13t8\)
Huawei BLA-L29C
All of the following
Huawei Berkeley-l09 Firmware<9.1.0.350\(c10e3r1p14t8\)
Huawei Berkeley-L09
All of the following
Huawei Berkeley-l09 Firmware<9.1.0.350\(c636e4r1p13t8\)
Huawei Berkeley-L09
All of the following
Huawei Charlotte-l29c Firmware<9.1.0.325\(c185e4r1p11t8\)
Huawei Charlotte-L29C
All of the following
Huawei Charlotte-l29c Firmware<9.1.0.325\(c636e2r1p12t8\)
Huawei Charlotte-L29C
All of the following
Huawei Charlotte-l29c Firmware<9.1.0.328\(c432e5r1p9t8\)
Huawei Charlotte-L29C
All of the following
Huawei Charlotte-l29c Firmware<9.1.0.328\(c782e10r1p9t8\)
Huawei Charlotte-L29C
All of the following
Huawei Columbia-l29d Firmware<9.1.0.350\(c185e3r1p12t8\)
Huawei Columbia-L29D
All of the following
Huawei Columbia-l29d Firmware<9.1.0.350\(c461e3r1p11t8\)
Huawei Columbia-L29D
All of the following
Huawei Columbia-l29d Firmware<9.1.0.350\(c636e3r1p13t8\)
Huawei Columbia-L29D
All of the following
Huawei Columbia-l29d Firmware<9.1.0.351\(c432e5r1p13t8\)
Huawei Columbia-L29D
All of the following
Huawei Cornell-l29a Firmware<9.1.0.341\(c185e1r1p9t8\)
Huawei Cornell-L29A
All of the following
Huawei Cornell-l29a Firmware<9.1.0.342\(c461e1r1p9t8\)
Huawei Cornell-L29A
All of the following
Huawei Cornell-l29a Firmware<9.1.0.347\(c432e1r1p9t8\)
Huawei Cornell-L29A
All of the following
Huawei Emily-l29c Firmware<9.1.0.311\(c461e2r1p11t8\)
Huawei Emily-L29C
All of the following
Huawei Emily-l29c Firmware<9.1.0.325\(c185e2r1p12t8\)
Huawei Emily-L29C
All of the following
Huawei Emily-l29c Firmware<9.1.0.325\(c636e7r1p13t8\)
Huawei Emily-L29C
All of the following
Huawei Emily-l29c Firmware<9.1.0.326\(c635e2r1p11t8\)
Huawei Emily-L29C
All of the following
Huawei Emily-l29c Firmware<9.1.0.328\(c432e7r1p11t8\)
Huawei Emily-L29C
All of the following
Huawei Figo-l31 Firmware<9.1.0.122\(c09e7r1p5t8\)
Huawei Figo-l31
All of the following
Huawei Figo-l31 Firmware<9.1.0.137\(c33e8r1p5t8\)
Huawei Figo-l31
All of the following
Huawei Figo-l31 Firmware<9.1.0.137\(c530e8r1p5t8\)
Huawei Figo-l31
All of the following
Huawei Figo-l31 Firmware<9.1.0.158\(c432e8r1p5t8\)
Huawei Figo-l31
All of the following
Huawei Figo-l31 Firmware<9.1.0.165\(c10e8r1p5t8\)
Huawei Figo-l31
All of the following
Huawei Florida-l21 Firmware<9.1.0.150\(c432e6r1p5t8\)
Huawei Florida-l21
All of the following
Huawei Honor 20 Firmware<9.1.0.149\(c675e8r2p1\)
Huawei Honor 20
All of the following
Huawei Honor 20 Pro Firmware<9.1.0.154\(c432e2r5p1\)
Huawei HONOR 20 PRO
All of the following
Huawei Honor 20 Pro Firmware<9.1.0.154\(c636e2r3p1\)
Huawei HONOR 20 PRO
All of the following
Huawei Honor 20 Pro Firmware<9.1.0.155\(c10e2r3p1\)
Huawei HONOR 20 PRO
All of the following
Huawei Honor 20 Pro Firmware<9.1.0.170\(c185e2r5p1\)
Huawei HONOR 20 PRO
All of the following
Huawei Honor 20 Pro Firmware<9.1.0.170\(c636e2r3p1\)
Huawei HONOR 20 PRO
All of the following
Huawei Honor 20 Pro Firmware<9.1.0.171\(c10e2r3p1\)
Huawei HONOR 20 PRO
All of the following
Huawei Honor 20 Pro Firmware<9.1.0.172\(c432e2r5p1\)
Huawei HONOR 20 PRO
debian/linux
5.10.223-15.10.257-16.1.170-36.1.174-16.12.86-16.12.90-27.0.10-17.0.12-1
Remediation
Information
At this time there is no known mitigation if bluetooth hardware is to be continue to be used. Replacing the hardware with its wired version and disabling bluetooth may be a suitable alternative for some environments.
Event History
Jul 8, 2019
Data Sourced
via Red Hat·11:28 AM
DescriptionSeverityAffected Software
Aug 5, 2019
CVE Published
via Android·12:00 AM
Aug 14, 2019
CVE Published
via MITRE·04:27 PM
Data Sourced
via MITRE·04:27 PM
DescriptionSeverityWeakness
Jan 11, 2024
Data Sourced
via Launchpad·11:33 PM
Description
May 23, 2026
Data Sourced
via Ubuntu·09:47 AM
RemedyDescriptionSeverityAffected Software
Jun 10, 2026
Data Sourced
via Debian·10:13 AM
DescriptionAffected Software
Parent advisories
This vulnerability appears in the following advisories.
Peer vulnerabilities
Found alongside the following vulnerabilities.
- CVE-2019-9506
- CVE-2020-10135
- CVE-2019-8646
- CVE-2019-8647
- CVE-2019-8660
- CVE-2019-8702
- CVE-2018-16860
- CVE-2019-8668
- CVE-2019-13118
- CVE-2019-8698
- CVE-2019-8662
- CVE-2019-8657
- CVE-2019-8690
- CVE-2019-8649
- CVE-2019-8658
- CVE-2019-8644
- CVE-2019-8666
- CVE-2019-8669
- CVE-2019-8671
- CVE-2019-8672
- CVE-2019-8673
- CVE-2019-8676
- CVE-2019-8677
- CVE-2019-8678
- CVE-2019-8679
- CVE-2019-8680
- CVE-2019-8681
- CVE-2019-8683
- CVE-2019-8684
- CVE-2019-8685
- CVE-2019-8686
- CVE-2019-8687
- CVE-2019-8688
- CVE-2019-8689
- CVE-2019-8693
- CVE-2019-8656
- CVE-2018-19860
- CVE-2019-8661
- CVE-2019-8675
- CVE-2019-8696
- CVE-2019-8539
- CVE-2019-8697
- CVE-2019-8648
- CVE-2019-8663
- CVE-2019-8695
- CVE-2019-8691
- CVE-2019-8692
- CVE-2019-8694
- CVE-2019-8670
- CVE-2019-8701
- CVE-2019-8667
- CVE-2019-8624
- CVE-2019-8633
- CVE-2019-8659
- CVE-2019-8665
- CVE-2019-8682
- CVE-2019-8699
Frequently Asked Questions
1
What is the severity of CVE-2019-9506?
CVE-2019-9506 is classified as a high severity vulnerability due to its potential to allow attackers to downgrade Bluetooth encryption.
2
How do I fix CVE-2019-9506?
To mitigate CVE-2019-9506, update your Bluetooth software or firmware to the latest versions recommended by your device manufacturer.
3
What types of devices are affected by CVE-2019-9506?
CVE-2019-9506 affects various devices running impacted versions of the Bluetooth protocol including certain models of Android, iOS, and specific Linux kernel versions.
4
Can CVE-2019-9506 be exploited remotely?
CVE-2019-9506 requires physical proximity to the vulnerable device, making it necessary for the attacker to be within Bluetooth range.
5
What are the potential impacts of CVE-2019-9506?
The main impact of CVE-2019-9506 is the risk of data leakage or unauthorized access due to the weakening of Bluetooth encryption.