A vulnerabilitiy in BLE secure connections is reported as CVE-2020-26558 : Impersonation in the Passkey entry protocol
"The Bluetooth SIG is recommending that potentially vulnerable implementations restrict the public keys accepted from a remote peer device to disallow a remote peer to present the same public key chosen by the local device"
Is the S132 SoftDevice affected by this vulnerabilitiy?
If so,
- Which versions are affected?
- Any plan to update SoftDevice or is it up to upper layer to apply Bluetooth SIG recommendation?
Thank you very much in advance
