Multiple Bluetooth chips from major vendors such as Qualcomm, Broadcom, Intel, and Apple are vulnerable to a pair of security flaws that allow a nearby miscreant to impersonate other devices and intercept data.
The weaknesses were identified by Daniele Antonioli, an assistant professor at French graduate school and research center EURECOM’s software and system security group. He detailed the attack vectors by which the flaws could be exploited in a paper [PDF] titled “BLUFFS: Bluetooth Forward and Future Secrecy Attacks and Defenses.”
Antonioli’s explanation states that the flaws exist in versions of the Bluetooth Core Specification from 2014’s version 4.2 to the February 2023 version 5.4.
