CVE-2020-24587
Advisory lineage Upstream: 0 Downstream: 35
Modified
Published: 11 May 2021, 00:00
Last modified:04 Aug 2024, 15:19
Vulnerability Summary
Overall Risk (default)
low
21/100 CVSS Score
2.6 LOW
v3.1 (nvd)
EPSS Score
0.55% LOW
1% probability +0.13%
KEV
Not listed
Ransomware
No reports
Public exploits
1 found
Dark Web
Not detected
Timeline
11 May 2021, 00:00
Published
Vulnerability first disclosed
04 Aug 2024, 15:19
Last Modified
Vulnerability information updated
Description
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed.
CVSS Metrics
- v3.1•LOW•Score: 2.6CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
- v2.0•LOW•Score: 1.8AV:A/AC:H/Au:N/C:P/I:N/A:N
EPSS Trends
Current EPSS score: 0.55%• Percentile: 68%
Techniques & Countermeasures
- CWE-327•Use of a Broken or Risky Cryptographic Algorithm
The product uses a broken or risky cryptographic algorithm or protocol.
Affected Systems
- arista•c-100_firmware
na
- arista•c-110_firmware
na
- arista•c-120_firmware
na
- arista•c-130_firmware
na
- arista•c-200_firmware
na
- arista•c-230_firmware
na
- arista•c-235_firmware
na
- arista•c-250_firmware
na
- arista•c-260_firmware
na
- arista•c-65_firmware
na
- arista•c-75_firmware
na
- arista•o-105_firmware
na
- arista•o-90_firmware
na
- arista•w-118_firmware
na
- arista•w-68_firmware
na
- cisco•1100_firmware
na
- cisco•1100-4p_firmware
na
- cisco•1100-8p_firmware
na
- cisco•1101-4p_firmware
na
- cisco•1109-2p_firmware
na
- cisco•1109-4p_firmware
na
- cisco•aironet_1532_firmware
na
- cisco•aironet_1542d_firmware
na
- cisco•aironet_1542i_firmware
na
- cisco•aironet_1552_firmware
na
- cisco•aironet_1552h_firmware
na
- cisco•aironet_1572_firmware
na
- cisco•aironet_1702_firmware
na
- cisco•aironet_1800_firmware
na
- cisco•aironet_1800i_firmware
na
- cisco•aironet_1810_firmware
na
- cisco•aironet_1810w_firmware
na
- cisco•aironet_1815_firmware
na
- cisco•aironet_1815i_firmware
na
- cisco•aironet_1832_firmware
na
- cisco•aironet_1842_firmware
na
- cisco•aironet_1852_firmware
na
- cisco•aironet_2702_firmware
na
- cisco•aironet_2800_firmware
na
- cisco•aironet_2800e_firmware
na
- cisco•aironet_2800i_firmware
na
- cisco•aironet_3702_firmware
na
- cisco•aironet_3800_firmware
na
- cisco•aironet_3800e_firmware
na
- cisco•aironet_3800i_firmware
na
- cisco•aironet_3800p_firmware
na
- cisco•aironet_4800_firmware
na
- cisco•aironet_ap803_firmware
na
- cisco•aironet_iw3702_firmware
na
- cisco•catalyst_9105_firmware
na
Showing first 50 affected entries in server-rendered view.
References (9)
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00473.html
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu
- https://www.fragattacks.com
- https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md
- http://www.openwall.com/lists/oss-security/2021/05/11/12
- https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html
- https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html
- https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63
- https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html