Outdated Bluetooth Pairing Mechanisms in Nokia FastMile 5G Receiver: PIN and LTK Retrieval Vulnerability

Outdated Bluetooth Pairing Mechanisms in Nokia FastMile 5G Receiver: PIN and LTK Retrieval Vulnerability

CVE-2022-38788 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

An issue was discovered in Nokia FastMile 5G Receiver 5G14-B 1.2104.00.0281. Bluetooth on the Nokia ODU uses outdated pairing mechanisms, allowing an attacker to passively intercept a paring handshake and (after offline cracking) retrieve the PIN and LTK (long-term key).

Learn more about our Web Application Penetration Testing UK.