oss-security - CVE-2025-62235: Apache NimBLE: Incorrect handling of SMP Security Request could lead to undesirable pairing

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [day] [month] [year] [list]

Message-ID: <edf86d3f-faa5-76d6-c819-73f928a7e9dd@apache.org>
Date: Thu, 08 Jan 2026 09:54:32 +0000
From: Szymon Janc <janc@...che.org>
To: oss-security@...ts.openwall.com
Subject: CVE-2025-62235: Apache NimBLE: Incorrect handling of SMP Security
 Request could lead to undesirable pairing 

Severity: important 

Affected versions:

- Apache NimBLE through 1.8.0

Description:

Authentication Bypass by Spoofing vulnerability in Apache NimBLE.

Receiving specially crafted Security Request could lead to removal of original bond and re-bond with impostor.
This issue affects Apache NimBLE: through 1.8.0.

Users are recommended to upgrade to version 1.9.0, which fixes the issue.

Credit:

Tommaso Sacchetti <tommaso.sacchetti@...il.com> (reporter)

References:

https://github.com/apache/mynewt-nimble/commit/41f67e391e788c5feef9030026cc5cbc5431838a
https://mynewt.apache.org/
https://www.cve.org/CVERecord?id=CVE-2025-62235

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.