New BLUFFS Bluetooth Attack Expose Devices to Adversary-in-the-Middle Attacks

Dec 4, 2023

New research has unearthed multiple novel attacks that break Bluetooth Classic’s forward secrecy and future secrecy guarantees, resulting in adversary-in-the-middle (AitM) scenarios between two already connected peers.
The issues, collectively named BLUFFS, impact Bluetooth Core Specification 4.2 through 5.4. They are tracked under the identifier CVE-2023-24023 (CVSS score: 6.8)

Get Free Report & Network Analysis

Please check your email for the free report.