CVE-2020-24588
Advisory lineage Upstream: 0 Downstream: 39
Modified
Published: 11 May 2021, 00:00
Last modified:14 Apr 2026, 08:48
Vulnerability Summary
Overall Risk (default)
low
24/100 CVSS Score
3.5 LOW
v3.1 (nvd)
EPSS Score
0.4% LOW
0% probability -0.11%
KEV
Not listed
Ransomware
No reports
Public exploits
1 found
Dark Web
Not detected
Timeline
11 May 2021, 00:00
Published
Vulnerability first disclosed
14 Apr 2026, 08:48
Last Modified
Vulnerability information updated
Description
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.
CVSS Metrics
- v3.1•LOW•Score: 3.5CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
- v2.0•LOW•Score: 2.9AV:A/AC:M/Au:N/C:N/I:P/A:N
EPSS Trends
Current EPSS score: 0.40%• Percentile: 61%
Techniques & Countermeasures
- CWE-327•Use of a Broken or Risky Cryptographic Algorithm
The product uses a broken or risky cryptographic algorithm or protocol.
Affected Systems
- arista•c-100_firmware
na
- arista•c-110_firmware
na
- arista•c-120_firmware
na
- arista•c-130_firmware
na
- arista•c-200_firmware
na
- arista•c-230_firmware
na
- arista•c-235_firmware
na
- arista•c-250_firmware
na
- arista•c-260_firmware
na
- arista•c-65_firmware
na
- arista•c-75_firmware
na
- arista•o-105_firmware
na
- arista•o-90_firmware
na
- arista•w-118_firmware
na
- arista•w-68_firmware
na
- cisco•1100_firmware
na
- cisco•1100-4p_firmware
na
- cisco•1100-8p_firmware
na
- cisco•1101-4p_firmware
na
- cisco•1109-2p_firmware
na
- cisco•1109-4p_firmware
na
- cisco•aironet_1532_firmware
na
- cisco•aironet_1542d_firmware
na
- cisco•aironet_1542i_firmware
na
- cisco•aironet_1800_firmware
na
- cisco•aironet_1800i_firmware
na
- cisco•aironet_1810_firmware
na
- cisco•aironet_1810w_firmware
na
- cisco•aironet_1815_firmware
na
- cisco•aironet_1815i_firmware
na
- cisco•aironet_1832_firmware
na
- cisco•aironet_1842_firmware
na
- cisco•aironet_1852_firmware
na
- cisco•aironet_ap803_firmware
na
- cisco•aironet_iw3702_firmware
na
- cisco•catalyst_9105_firmware
na
- cisco•catalyst_9105axi_firmware
na
- cisco•catalyst_9105axw_firmware
na
- cisco•catalyst_9115_firmware
na
- cisco•catalyst_9115_ap_firmware
na
- cisco•catalyst_9115axe_firmware
na
- cisco•catalyst_9115axi_firmware
na
- cisco•catalyst_9117_firmware
na
- cisco•catalyst_9117_ap_firmware
na
- cisco•catalyst_9117axi_firmware
na
- cisco•catalyst_9120_firmware
na
- cisco•catalyst_9120_ap_firmware
na
- cisco•catalyst_9120axe_firmware
na
- cisco•catalyst_9120axi_firmware
na
- cisco•catalyst_9120axp_firmware
na
Showing first 50 affected entries in server-rendered view.
References (12)
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00473.html
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu
- https://www.fragattacks.com
- https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md
- http://www.openwall.com/lists/oss-security/2021/05/11/12
- https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html
- https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf
- https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63
- https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html
- https://cert-portal.siemens.com/productcert/html/ssa-913875.html
- https://cert-portal.siemens.com/productcert/html/ssa-019200.html