CVE-2020-13593

Name of the Vulnerable Software and Affected Versions Texas Instruments SimpleLink SIMPLELINK-CC2640R2-SDK versions 2.2.3 and earlier

Description The Bluetooth Low Energy Secure Manager Protocol implementation has a flaw that allows an attacker in radio range to skip the Diffie-Hellman check during Secure Connection pairing if the Link Layer encryption setup is performed earlier. This enables the attacker to establish an encrypted session with an unauthenticated Long Term Key, potentially achieving arbitrary read/write access to protected GATT service data, causing a denial of service, or controlling a device's function.

Recommendations For Texas Instruments SimpleLink SIMPLELINK-CC2640R2-SDK versions 2.2.3 and earlier, consider disabling the Bluetooth Low Energy Secure Manager Protocol until a patch is available to prevent exploitation. Restrict access to protected GATT service data to minimize the risk of unauthorized access. Avoid using unauthenticated Long Term Keys in encrypted sessions to reduce the risk of device control or data breaches. At the moment, there is no information about a newer version that contains a fix for this issue.