CVE-2026-8676

Published: Mag 26, 2026 Last Modified: Mag 26, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 8,8

Source: [email protected]

Attack Vector: adjacent_network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

An attacker is able to downgrade the security of a Bluetooth LE connection by deleting an existing bond, spoofing the bonded device and creating a new bond.

290

Authentication Bypass by Spoofing

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Access Control

Potential Impacts:

Bypass Protection Mechanism Gain Privileges Or Assume Identity

Applicable Platforms

All platforms may be affected

View CWE Details

https://community.silabs.com/068Vm00000p3N9C

https://www.silabs.com/documents/public/release-notes/bt-so…

https://www.silabs.com/documents/public/release-notes/bt-software-release-notes…

CVE-2026-8676

Description

Authentication Bypass by Spoofing

Common Consequences

Applicable Platforms

Iscriviti alla newsletter