Bluetooth firmware or operating system software drivers in macOS versions before 10.13, High Sierra and iOS versions before 11.4, and Android versions before the 2018-06-05 patch may not sufficiently validate elliptic curve parameters used to generate public keys during a Diffie-Hellman key exchange, which may allow a remote attacker to obtain the encryption key used by the device.
1.1161.1171.1181.1191.1211.1221.1231.1241.1251.126+21 more4.4.0-159.1874.4.0-1090.1014.15.0-1047.49~16.04.14.15.0-1055.601.157.234.15.0-1040.42~16.04.14.15.0-58.64~16.04.14.4.0-1054.614.15.0-1021.23~16.04.1Exploitability
AV:AAC:HPR:NUI:NScope
S:UImpact
C:HI:HA:NCVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N