CVE-2022-38788 Information

Description

An issue was discovered in Nokia FastMile 5G Receiver 5G14-B 1.2104.00.0281. Bluetooth on the Nokia ODU uses outdated pairing mechanisms allowing an attacker to passively intercept a paring handshake and (after offline cracking) retrieve the PIN and LTK (long-term key).

Reference

https://github.com/ProxyStaffy/Nokia-FastMile-5G-Receiver-5G14-B https://www.nokia.com/notices/responsible-disclosure/