{"id":"CVE-2020-26555","details":"Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN.","aliases":["A-174626251","ASB-A-174626251"],"modified":"2026-03-15T22:35:22.632869Z","published":"2021-05-24T18:15:07.837Z","related":["ALSA-2024:2394","ALSA-2024:4211","ALSA-2024:4352","MGASA-2023-0328","MGASA-2023-0331","SUSE-SU-2024:0110-1","SUSE-SU-2024:0112-1","SUSE-SU-2024:0113-1","SUSE-SU-2024:0115-1","SUSE-SU-2024:0117-1","SUSE-SU-2024:0118-1","SUSE-SU-2024:0120-1","SUSE-SU-2024:0129-1","SUSE-SU-2024:0141-1","SUSE-SU-2024:0153-1","SUSE-SU-2024:0154-1","SUSE-SU-2024:0156-1","SUSE-SU-2024:0160-1"],"references":[{"type":"WEB","url":"https://www.kb.cert.org/vuls/id/799380"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NSS6CTGE4UGTJLCOZOASDR3T3SLL6QJZ/"},{"type":"ADVISORY","url":"https://kb.cert.org/vuls/id/799380"},{"type":"ADVISORY","url":"https://www.bluetooth.com/learn-about-bluetooth/key-attributes/bluetooth-security/reporting-security/"},{"type":"ADVISORY","url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00520.html"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"1.1b"},{"last_affected":"5.2"}]},{"events":[{"introduced":"0"},{"last_affected":"34"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-26555.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}]}