CVE-2026-43334 - Vulnerability Analysis
HighCVSS: 8.8Last Updated: May 11, 2026
Linux kernel Bluetooth SMP - Authentication Bypass
Published: May 8, 2026Updated: May 11, 2026
Overview
Linux kernel Bluetooth SMP contains a broken authentication caused by improper enforcement of MITM requirements before building the pairing response, letting attackers bypass MITM protection, exploit requires local BT_SECURITY_HIGH setting.
Severity & Score
Severity: High
CVSS Score: 8.8
Impact
Attackers can bypass Man-in-the-Middle protection, weakening Bluetooth pairing security and potentially allowing unauthorized access.
Mitigation
Update to the latest Linux kernel version with the fix applied.
References
- https://git.kernel.org/stable/c/91649c02c1baaa18cedf7fb425fa1f0f852c8183
- https://git.kernel.org/stable/c/c8ff0ca6508535bccabd81c5c9dcc63de8a3d4fb
- https://git.kernel.org/stable/c/d05111bfe37bfd8bd4d2dfe6675d6bdeef43f7c7
- https://git.kernel.org/stable/c/ec17efb1ef91506cfd17a77692eaf4bbacb520ea
- https://git.kernel.org/stable/c/fa14e0e19820b1bbdb42185c9c4efa950bcffef9
- https://git.kernel.org/stable/c/01bb4045d2306c266178f49ce0c3576d237a3040
- https://git.kernel.org/stable/c/425a22c5373d4e1b46492ab869074ebeeade61f3
- https://git.kernel.org/stable/c/7ab69426e7ecbd18a222ee2ec87ca612d30197d7
Related Resources
Details
- CVE ID
- CVE-2026-43334
- Severity
- High
- CVSS Score
- 8.8
- Type
- broken_authentication
- Status
- new
CVSS Metrics
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H