VYPR
Medium severity6.8NVD Advisory· Published Aug 7, 2018· Updated Jun 17, 2026

CVE-2018-5383

CVE-2018-5383

Description

Bluetooth firmware or operating system software drivers in macOS versions before 10.13, High Sierra and iOS versions before 11.4, and Android versions before the 2018-06-05 patch may not sufficiently validate elliptic curve parameters used to generate public keys during a Diffie-Hellman key exchange, which may allow a remote attacker to obtain the encryption key used by the device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

16

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.