ALPINE-CVE-2017-13082
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 17 Oct 2017, 13:29
Last modified:03 Dec 2025, 22:43
Vulnerability Summary
Overall Risk (default)
medium
32/100 CVSS Score
8.1 HIGH
3.0 (osv_alpine)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
17 Oct 2017, 13:29
Published
Vulnerability first disclosed
03 Dec 2025, 22:43
Last Modified
Vulnerability information updated
Description
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11r allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the fast BSS transmission (FT) handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
CVSS Metrics
- v3.0•HIGH•Score: 8.1CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected Systems
- alpine•hostapd
< 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r1 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2 | < 2.6-r2
- alpine•wpa_supplicant
< 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7 | < 2.6-r2 | < 2.6-r4 | < 2.6-r7 | < 2.6-r7 | < 2.6-r7