Mist Security Advisory – Bluetooth Discoverability

 

CVE: CVE-2018-10910
Publication Date: 2019-01-28

Summary

Mist BLE solutions are not impacted by the Bluetooth Discoverability vulnerability – related to the use of Bluetooth Classic as per CVE-2018-10910. The vulnerability forces the Bluetooth mode to stay as discoverable, allowing all external Bluetooth devices to connect. This flaw can be exploited when malicious devices are within Bluetooth range.

Affected Products

None of the Mist products are affected by this vulnerability as we use a BLE chipset in our Access Points, and not Bluetooth Classic.

 

For more information, please see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10910