ALPINE-CVE-2017-13081
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 17 Oct 2017, 13:29
Last modified:03 Dec 2025, 22:43
Vulnerability Summary
Overall Risk (default)
low
21/100 CVSS Score
5.3 MEDIUM
3.0 (osv_alpine)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
17 Oct 2017, 13:29
Published
Vulnerability first disclosed
03 Dec 2025, 22:43
Last Modified
Vulnerability information updated
Description
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the group key handshake, allowing an attacker within radio range to spoof frames from access points to clients.
CVSS Metrics
- v3.0•MEDIUM•Score: 5.3CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Systems
- alpine•hostapd
< 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r1 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2
- alpine•wpa_supplicant
< 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r2 | < 2.6-r4 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7