CVE-2020-24588

3.5

LOW

"Wi-Fi WPA/WPA2/WPA3 WEP 802.11 Authentication Bypass"

Description

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.

INFO

Published Date :

May 11, 2021, 8:15 p.m.

Last Modified :

April 1, 2023, 10:15 p.m.

Source :

[email protected]

Remotely Exploitable :

No

Impact Score :

1.4

Exploitability Score :

2.1 Public PoC/Exploit Available at Github

CVE-2020-24588 has a 2 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

Affected Products

The following products are affected by CVE-2020-24588 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID	Vendor	Product
1	Cisco	ip_phone_8821_firmware
2	Cisco	aironet_1800_firmware
3	Cisco	ip_phone_8832_firmware
4	Cisco	ip_phone_8861_firmware
5	Cisco	ip_phone_8865_firmware
6	Cisco	aironet_1542i_firmware
7	Cisco	aironet_1542d_firmware
8	Cisco	aironet_1815_firmware
9	Cisco	catalyst_9105axi_firmware
10	Cisco	catalyst_9115axe_firmware
11	Cisco	catalyst_9117_firmware
12	Cisco	catalyst_9120axi_firmware
13	Cisco	catalyst_9124axd_firmware
14	Cisco	catalyst_9130axe_firmware
15	Cisco	1100-8p_firmware
16	Cisco	aironet_1815i_firmware
17	Cisco	catalyst_9105axw_firmware
18	Cisco	catalyst_9115axi_firmware
19	Cisco	catalyst_9120axp_firmware
20	Cisco	catalyst_9120axe_firmware
21	Cisco	catalyst_9124axi_firmware
22	Cisco	catalyst_9130axi_firmware
23	Cisco	ip_phone_6861_firmware
24	Cisco	catalyst_9115_firmware
25	Cisco	catalyst_9117axi_firmware
26	Cisco	catalyst_9120_firmware
27	Cisco	catalyst_9124_firmware
28	Cisco	catalyst_9130_firmware
29	Cisco	meraki_mx64w_firmware
30	Cisco	meraki_mx67w_firmware
31	Cisco	meraki_mx68cw_firmware
32	Cisco	meraki_mx68w_firmware
33	Cisco	1100_firmware
34	Cisco	1100-4p_firmware
35	Cisco	1101-4p_firmware
36	Cisco	1109-2p_firmware
37	Cisco	1109-4p_firmware
38	Cisco	aironet_1532_firmware
39	Cisco	aironet_1800i_firmware
40	Cisco	aironet_1810_firmware
41	Cisco	aironet_1810w_firmware
42	Cisco	aironet_1832_firmware
43	Cisco	aironet_1842_firmware
44	Cisco	aironet_1852_firmware
45	Cisco	aironet_ap803_firmware
46	Cisco	aironet_iw3702_firmware
47	Cisco	catalyst_9105_firmware
48	Cisco	catalyst_9115_ap_firmware
49	Cisco	catalyst_9117_ap_firmware
50	Cisco	catalyst_9120_ap_firmware
51	Cisco	catalyst_9130_ap_firmware
52	Cisco	ir829-2lte-ea-ak9_firmware
53	Cisco	ir829-2lte-ea-bk9_firmware
54	Cisco	ir829-2lte-ea-ek9_firmware
55	Cisco	ir829gw-lte-ga-ck9_firmware
56	Cisco	ir829gw-lte-ga-ek9_firmware
57	Cisco	ir829gw-lte-ga-sk9_firmware
58	Cisco	ir829gw-lte-ga-zk9_firmware
59	Cisco	ir829gw-lte-na-ak9_firmware
60	Cisco	ir829gw-lte-vz-ak9_firmware
61	Cisco	meraki_gr10_firmware
62	Cisco	meraki_gr60_firmware
63	Cisco	meraki_mr12_firmware
64	Cisco	meraki_mr20_firmware
65	Cisco	meraki_mr26_firmware
66	Cisco	meraki_mr30h_firmware
67	Cisco	meraki_mr32_firmware
68	Cisco	meraki_mr33_firmware
69	Cisco	meraki_mr34_firmware
70	Cisco	meraki_mr36_firmware
71	Cisco	meraki_mr42_firmware
72	Cisco	meraki_mr42e_firmware
73	Cisco	meraki_mr44_firmware
74	Cisco	meraki_mr45_firmware
75	Cisco	meraki_mr46_firmware
76	Cisco	meraki_mr46e_firmware
77	Cisco	meraki_mr52_firmware
78	Cisco	meraki_mr53_firmware
79	Cisco	meraki_mr53e_firmware
80	Cisco	meraki_mr55_firmware
81	Cisco	meraki_mr56_firmware
82	Cisco	meraki_mr62_firmware
83	Cisco	meraki_mr66_firmware
84	Cisco	meraki_mr70_firmware
85	Cisco	meraki_mr72_firmware
86	Cisco	meraki_mr74_firmware
87	Cisco	meraki_mr76_firmware
88	Cisco	meraki_mr84_firmware
89	Cisco	meraki_mr86_firmware
90	Cisco	meraki_mx65w_firmware
91	Cisco	meraki_mx67cw_firmware
92	Cisco	meraki_z3_firmware
93	Cisco	meraki_z3c_firmware
94	Cisco	webex_board_55_firmware
95	Cisco	webex_board_55s_firmware
96	Cisco	webex_board_70_firmware
97	Cisco	webex_board_70s_firmware
98	Cisco	webex_board_85s_firmware
99	Cisco	webex_dx70_firmware
100	Cisco	webex_dx80_firmware
101	Cisco	webex_room_55_firmware
102	Cisco	webex_room_55_dual_firmware
103	Cisco	webex_room_70_firmware
104	Cisco	webex_room_70_dual_firmware
105	Cisco	webex_room_70_dual_g2_firmware
106	Cisco	webex_room_70_single_firmware
107	Cisco	webex_room_70_single_g2_firmware
108	Cisco	webex_room_kit_firmware
109	Cisco	webex_room_kit_mini_firmware
1	Siemens	scalance_w1750d_firmware
2	Siemens	scalance_wam763-1_firmware
3	Siemens	scalance_wam766-1_firmware
4	Siemens	scalance_wam766-1_6ghz_firmware
5	Siemens	scalance_wum763-1_firmware
6	Siemens	scalance_wum766-1_firmware
7	Siemens	scalance_wum766-1_6ghz_firmware
8	Siemens	scalance_w1748-1_firmware
9	Siemens	scalance_w1788-1_firmware
10	Siemens	scalance_w1788-2_firmware
11	Siemens	scalance_w1788-2ia_firmware
12	Siemens	scalance_w721-1_firmware
13	Siemens	scalance_w722-1_firmware
14	Siemens	scalance_w734-1_firmware
15	Siemens	scalance_w738-1_firmware
16	Siemens	scalance_w748-1_firmware
17	Siemens	scalance_w761-1_firmware
18	Siemens	scalance_w774-1_firmware
19	Siemens	scalance_w778-1_firmware
20	Siemens	scalance_w786-1_firmware
21	Siemens	scalance_w786-2_firmware
22	Siemens	scalance_w786-2ia_firmware
23	Siemens	scalance_w788-1_firmware
24	Siemens	scalance_w788-2_firmware
1	Intel	wi-fi_6_ax201_firmware
2	Intel	wi-fi_6_ax200_firmware
3	Intel	ac_9560_firmware
4	Intel	ac_9260_firmware
5	Intel	ac_8265_firmware
6	Intel	ac_8260_firmware
7	Intel	killer_ac_1550_firmware
8	Intel	killer_wi-fi_6_ax1650_firmware
9	Intel	killer_wi-fi_6e_ax1675_firmware
10	Intel	proset_ac_3165_firmware
11	Intel	proset_ac_3168_firmware
12	Intel	proset_ac_8260_firmware
13	Intel	proset_ac_8265_firmware
14	Intel	proset_ac_9260_firmware
15	Intel	proset_ac_9461_firmware
16	Intel	proset_ac_9462_firmware
17	Intel	proset_ac_9560_firmware
18	Intel	proset_wi-fi_6_ax200_firmware
19	Intel	proset_wi-fi_6_ax201_firmware
20	Intel	proset_wi-fi_6e_ax210_firmware
21	Intel	proset_wireless_7265_\(rev_d\)_firmware
1	Arista	c-250_firmware
2	Arista	c-260_firmware
3	Arista	c-230_firmware
4	Arista	c-235_firmware
5	Arista	c-200_firmware
6	Arista	c-100_firmware
7	Arista	c-110_firmware
8	Arista	c-120_firmware
9	Arista	c-130_firmware
10	Arista	c-65_firmware
11	Arista	c-75_firmware
12	Arista	o-105_firmware
13	Arista	o-90_firmware
14	Arista	w-118_firmware
15	Arista	w-68_firmware
1	Microsoft	windows_10
2	Microsoft	windows_7
3	Microsoft	windows_8.1
4	Microsoft	windows_rt_8.1
5	Microsoft	windows_server_2008
6	Microsoft	windows_server_2012
7	Microsoft	windows_server_2016
8	Microsoft	windows_server_2019
1	Linux	linux_kernel
2	Linux	mac80211
1	Debian	debian_linux
1	Ieee	ieee_802.11

: Total Affected Vendor : 8 | Products : 181

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2020-24588.

URL	Resource
http://www.openwall.com/lists/oss-security/2021/05/11/12	Mailing List Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf	Third Party Advisory
https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md	Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html	Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html	Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu	Third Party Advisory
https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63	Third Party Advisory
https://www.fragattacks.com	Exploit Third Party Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00473.html	Third Party Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

kali973/fragAttacks

None

Makefile Shell C Roff Python PHP C++ QMake Java

Updated: 1 year, 3 months ago

0 stars 0 fork 0 watcher

Born at : June 5, 2023, 8:59 a.m. This repo has been linked 11 different CVEs too.

vanhoefm/fragattacks

None

Makefile Shell C Roff Perl Python PHP C++ QMake Java

Updated: 2 weeks, 1 day ago

1224 stars 182 fork 182 watcher

Born at : Sept. 22, 2020, 10:38 p.m. This repo has been linked 11 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2020-24588 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2020-24588 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

CVE Modified by [email protected]

May. 14, 2024

Action Type Old Value New Value
CVE Modified by [email protected]

Apr. 01, 2023

Action Type Old Value New Value

Added Reference https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html [No Types Assigned]

Action	Type	Old Value	New Value
Added	Reference		https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html [No Types Assigned]

Reanalysis by [email protected]

Mar. 04, 2023

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.4.0 up to (excluding) 4.4.271 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.9.0 up to (excluding) 4.9.271 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.14 up to (excluding) 4.14.235 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 4.19 up to (excluding) 4.19.193 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.4 up to (excluding) 5.4.124 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.10 up to (excluding) 5.10.42 cpe:2.3:o:linux:linux_kernel::::::::* versions from (including) 5.12 up to (excluding) 5.12.9

Modified Analysis by [email protected]

Sep. 30, 2022

Action	Type	Old Value	New Value
Changed	Reference Type	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu No Types Assigned	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu Third Party Advisory
Changed	Reference Type	https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63 No Types Assigned	https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63 Third Party Advisory
Changed	Reference Type	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00473.html No Types Assigned	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00473.html Third Party Advisory
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w1748-1_firmware:-::::::m12:* OR cpe:2.3:h:siemens:scalance_w1748-1:-::::::m12:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w1750d_firmware:-::::::: OR cpe:2.3:h:siemens:scalance_w1750d:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w1788-1_firmware:-::::::m12:* OR cpe:2.3:h:siemens:scalance_w1788-1:-::::::m12:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w1788-2_firmware:-::::::eec_m12:* OR cpe:2.3:h:siemens:scalance_w1788-2:-::::::eec_m12:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w1788-2_firmware:-::::::m12:* OR cpe:2.3:h:siemens:scalance_w1788-2:-::::::m12:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w1788-2ia_firmware:-::::::m12:* OR cpe:2.3:h:siemens:scalance_w1788-2ia:-::::::m12:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w721-1_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w721-1:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w722-1_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w722-1:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w734-1_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w734-1:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w738-1_firmware:-::::::m12:* OR cpe:2.3:h:siemens:scalance_w738-1:-::::::m12:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w748-1_firmware:-::::::m12:* OR cpe:2.3:h:siemens:scalance_w748-1:-::::::m12:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w748-1_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w748-1:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w761-1_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w761-1:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w774-1_firmware:-::::::m12_eec:* OR cpe:2.3:h:siemens:scalance_w774-1:-::::::m12_eec:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w774-1_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w774-1:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w778-1_firmware:-::::::m12:* OR cpe:2.3:h:siemens:scalance_w778-1:-::::::m12:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w778-1_firmware:-::::::m12_eec:* OR cpe:2.3:h:siemens:scalance_w778-1:-::::::m12_eec:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w786-1_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w786-1:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w786-2_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w786-2:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w786-2_firmware:-::::::sfp:* OR cpe:2.3:h:siemens:scalance_w786-2:-::::::sfp:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w786-2ia_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w786-2ia:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w788-1_firmware:-::::::m12:* OR cpe:2.3:h:siemens:scalance_w788-1:-::::::m12:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w788-1_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w788-1:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w788-2_firmware:-::::::m12:* OR cpe:2.3:h:siemens:scalance_w788-2:-::::::m12:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w788-2_firmware:-::::::m12_eec:* OR cpe:2.3:h:siemens:scalance_w788-2:-::::::m12_eec:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_w788-2_firmware:-::::::rj45:* OR cpe:2.3:h:siemens:scalance_w788-2:-::::::rj45:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_wam763-1_firmware:-::::::: OR cpe:2.3:h:siemens:scalance_wam763-1:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_wam766-1_firmware:-::::::: OR cpe:2.3:h:siemens:scalance_wam766-1:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_wam766-1_firmware:-::::::eec:* OR cpe:2.3:h:siemens:scalance_wam766-1:-::::::eec:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_wam766-1_6ghz_firmware:-::::::: OR cpe:2.3:h:siemens:scalance_wam766-1_6ghz:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_wam766-1_6ghz_firmware:-::::::eec:* OR cpe:2.3:h:siemens:scalance_wam766-1_6ghz:-::::::eec:
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_wum763-1_firmware:-::::::: OR cpe:2.3:h:siemens:scalance_wum763-1:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_wum766-1_firmware:-::::::: OR cpe:2.3:h:siemens:scalance_wum766-1:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:siemens:scalance_wum766-1_6ghz_firmware:-::::::: OR cpe:2.3:h:siemens:scalance_wum766-1_6ghz:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-100_firmware:-::::::: OR cpe:2.3:h:arista:c-100:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-110_firmware:-::::::: OR cpe:2.3:h:arista:c-110:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-120_firmware:-::::::: OR cpe:2.3:h:arista:c-120:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-130_firmware:-::::::: OR cpe:2.3:h:arista:c-130:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-200_firmware:-::::::: OR cpe:2.3:h:arista:c-200:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-230_firmware:-::::::: OR cpe:2.3:h:arista:c-230:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-235_firmware:-::::::: OR cpe:2.3:h:arista:c-235:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-250_firmware:-::::::: OR cpe:2.3:h:arista:c-250:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-260_firmware:-::::::: OR cpe:2.3:h:arista:c-260:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-65_firmware:-::::::: OR cpe:2.3:h:arista:c-65:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:c-75_firmware:-::::::: OR cpe:2.3:h:arista:c-75:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:o-105_firmware:-::::::: OR cpe:2.3:h:arista:o-105:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:o-90_firmware:-::::::: OR cpe:2.3:h:arista:o-90:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:w-118_firmware:-::::::: OR cpe:2.3:h:arista:w-118:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:arista:w-68_firmware:-::::::: OR cpe:2.3:h:arista:w-68:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:1100_firmware:-::::::: OR cpe:2.3:h:cisco:1100:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:1100-4p_firmware:-::::::: OR cpe:2.3:h:cisco:1100-4p:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:1100-8p_firmware:-::::::: OR cpe:2.3:h:cisco:1100-8p:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:1101-4p_firmware:-::::::: OR cpe:2.3:h:cisco:1101-4p:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:1109-2p_firmware:-::::::: OR cpe:2.3:h:cisco:1109-2p:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:1109-4p_firmware:-::::::: OR cpe:2.3:h:cisco:1109-4p:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1532_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1532:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1542d_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1542d:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1542i_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1542i:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1800_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1800:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1800i_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1800i:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1810_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1810:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1810w_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1810w:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1815_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1815:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1815i_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1815i:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1832_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1832:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1842_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1842:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_1852_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_1852:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_ap803_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_ap803:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:aironet_iw3702_firmware:-::::::: OR cpe:2.3:h:cisco:aironet_iw3702:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9105_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9105:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9105axi_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9105axi:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9105axw_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9105axw:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9115_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9115:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9115_ap_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9115_ap:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9115axe_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9115axe:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9115axi_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9115axi:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9117_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9117:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9117_ap_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9117_ap:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9117axi_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9117axi:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9120_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9120:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9120_ap_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9120_ap:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9120axe_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9120axe:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9120axi_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9120axi:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9120axp_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9120axp:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9124_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9124:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9124axd_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9124axd:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9124axi_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9124axi:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9130_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9130:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9130_ap_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9130_ap:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9130axe_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9130axe:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:catalyst_9130axi_firmware:-::::::: OR cpe:2.3:h:cisco:catalyst_9130axi:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ip_phone_6861_firmware:-::::::: OR cpe:2.3:h:cisco:ip_phone_6861:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ip_phone_8821_firmware:-::::::: OR cpe:2.3:h:cisco:ip_phone_8821:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ip_phone_8832_firmware:-::::::: OR cpe:2.3:h:cisco:ip_phone_8832:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ip_phone_8861_firmware:-::::::: OR cpe:2.3:h:cisco:ip_phone_8861:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ip_phone_8865_firmware:-::::::: OR cpe:2.3:h:cisco:ip_phone_8865:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ir829-2lte-ea-ak9_firmware:-::::::: OR cpe:2.3:h:cisco:ir829-2lte-ea-ak9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ir829-2lte-ea-bk9_firmware:-::::::: OR cpe:2.3:h:cisco:ir829-2lte-ea-bk9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ir829-2lte-ea-ek9_firmware:-::::::: OR cpe:2.3:h:cisco:ir829-2lte-ea-ek9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ir829gw-lte-ga-ck9_firmware:-::::::: OR cpe:2.3:h:cisco:ir829gw-lte-ga-ck9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ir829gw-lte-ga-ek9_firmware:-::::::: OR cpe:2.3:h:cisco:ir829gw-lte-ga-ek9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ir829gw-lte-ga-sk9_firmware:-::::::: OR cpe:2.3:h:cisco:ir829gw-lte-ga-sk9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ir829gw-lte-ga-zk9_firmware:-::::::: OR cpe:2.3:h:cisco:ir829gw-lte-ga-zk9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ir829gw-lte-na-ak9_firmware:-::::::: OR cpe:2.3:h:cisco:ir829gw-lte-na-ak9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:ir829gw-lte-vz-ak9_firmware:-::::::: OR cpe:2.3:h:cisco:ir829gw-lte-vz-ak9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_gr10_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_gr10:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_gr60_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_gr60:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr12_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr12:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr20_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr20:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr26_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr26:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr30h_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr30h:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr32_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr32:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr33_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr33:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr34_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr34:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr36_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr36:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr42_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr42:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr42e_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr42e:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr44_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr44:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr45_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr45:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr46_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr46:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr46e_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr46e:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr52_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr52:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr53_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr53:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr53e_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr53e:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr55_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr55:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr56_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr56:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr62_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr62:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr66_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr66:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr70_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr70:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr72_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr72:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr74_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr74:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr76_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr76:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr84_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr84:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mr86_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mr86:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mx64w_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mx64w:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mx65w_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mx65w:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mx67cw_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mx67cw:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mx67w_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mx67w:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mx68cw_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mx68cw:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_mx68w_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_mx68w:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_z3_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_z3:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:meraki_z3c_firmware:-::::::: OR cpe:2.3:h:cisco:meraki_z3c:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_board_55_firmware:-::::::: OR cpe:2.3:h:cisco:webex_board_55:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_board_55s_firmware:-::::::: OR cpe:2.3:h:cisco:webex_board_55s:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_board_70_firmware:-::::::: OR cpe:2.3:h:cisco:webex_board_70:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_board_70s_firmware:-::::::: OR cpe:2.3:h:cisco:webex_board_70s:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_board_85s_firmware:-::::::: OR cpe:2.3:h:cisco:webex_board_85s:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_dx70_firmware:-::::::: OR cpe:2.3:h:cisco:webex_dx70:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_dx80_firmware:-::::::: OR cpe:2.3:h:cisco:webex_dx80:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_room_55_firmware:-::::::: OR cpe:2.3:h:cisco:webex_room_55:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_room_55_dual_firmware:-::::::: OR cpe:2.3:h:cisco:webex_room_55_dual:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_room_70_firmware:-::::::: OR cpe:2.3:h:cisco:webex_room_70:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_room_70_dual_firmware:-::::::: OR cpe:2.3:h:cisco:webex_room_70_dual:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_room_70_dual_g2_firmware:-::::::: OR cpe:2.3:h:cisco:webex_room_70_dual_g2:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_room_70_single_firmware:-::::::: OR cpe:2.3:h:cisco:webex_room_70_single:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_room_70_single_g2_firmware:-::::::: OR cpe:2.3:h:cisco:webex_room_70_single_g2:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_room_kit_firmware:-::::::: OR cpe:2.3:h:cisco:webex_room_kit:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:cisco:webex_room_kit_mini_firmware:-::::::: OR cpe:2.3:h:cisco:webex_room_kit_mini:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:ac_8260_firmware:-::::::: OR cpe:2.3:h:intel:ac_8260:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:ac_8265_firmware:-::::::: OR cpe:2.3:h:intel:ac_8265:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:ac_9260_firmware:-::::::: OR cpe:2.3:h:intel:ac_9260:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:ac_9560_firmware:-::::::: OR cpe:2.3:h:intel:ac_9560:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:killer_ac_1550_firmware:-::::::: OR cpe:2.3:h:intel:killer_ac_1550:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:killer_wi-fi_6_ax1650_firmware:-::::::: OR cpe:2.3:h:intel:killer_wi-fi_6_ax1650:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:killer_wi-fi_6e_ax1675_firmware:-::::::: OR cpe:2.3:h:intel:killer_wi-fi_6e_ax1675:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_ac_3165_firmware:-::::::: OR cpe:2.3:h:intel:proset_ac_3165:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_ac_3168_firmware:-::::::: OR cpe:2.3:h:intel:proset_ac_3168:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_ac_8260_firmware:-::::::: OR cpe:2.3:h:intel:proset_ac_8260:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_ac_8265_firmware:-::::::: OR cpe:2.3:h:intel:proset_ac_8265:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_ac_9260_firmware:-::::::: OR cpe:2.3:h:intel:proset_ac_9260:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_ac_9461_firmware:-::::::: OR cpe:2.3:h:intel:proset_ac_9461:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_ac_9462_firmware:-::::::: OR cpe:2.3:h:intel:proset_ac_9462:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_ac_9560_firmware:-::::::: OR cpe:2.3:h:intel:proset_ac_9560:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_wi-fi_6_ax200_firmware:-::::::: OR cpe:2.3:h:intel:proset_wi-fi_6_ax200:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_wi-fi_6_ax201_firmware:-::::::: OR cpe:2.3:h:intel:proset_wi-fi_6_ax201:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_wi-fi_6e_ax210_firmware:-::::::: OR cpe:2.3:h:intel:proset_wi-fi_6e_ax210:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:proset_wireless_7265_\(rev_d\)_firmware:-::::::: OR cpe:2.3:h:intel:proset_wireless_7265_\(rev_d\):-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:wi-fi_6_ax200_firmware:-::::::: OR cpe:2.3:h:intel:wi-fi_6_ax200:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:intel:wi-fi_6_ax201_firmware:-::::::: OR cpe:2.3:h:intel:wi-fi_6_ax201:-:::::::*

CWE Remap by [email protected]

Jul. 12, 2022

Action Type Old Value New Value

Changed CWE CWE-306 CWE-327

Action	Type	Old Value	New Value
Changed	CWE	CWE-306	CWE-327

CVE Modified by [email protected]

Oct. 28, 2021

Action	Type	New Value
Added	Reference	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu [No Types Assigned]
Added	Reference	https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00473.html [No Types Assigned]
Added	Reference	https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63 [No Types Assigned]

Modified Analysis by [email protected]

Aug. 09, 2021

Action	Type	Old Value	New Value
Changed	Reference Type	https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf No Types Assigned	https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf Third Party Advisory
Changed	Reference Type	https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html No Types Assigned	https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html Mailing List, Third Party Advisory
Changed	Reference Type	https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html No Types Assigned	https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html Mailing List, Third Party Advisory
Added	CPE Configuration		OR cpe:2.3:o:microsoft:windows_10:-::::::: cpe:2.3:o:microsoft:windows_10:20h2::::::: cpe:2.3:o:microsoft:windows_10:1607::::::: cpe:2.3:o:microsoft:windows_10:1803::::::: cpe:2.3:o:microsoft:windows_10:1809::::::: cpe:2.3:o:microsoft:windows_10:1909::::::: cpe:2.3:o:microsoft:windows_10:2004::::::: cpe:2.3:o:microsoft:windows_7:-:sp1::::::* cpe:2.3:o:microsoft:windows_8.1:-::::::: cpe:2.3:o:microsoft:windows_rt_8.1:-::::::: cpe:2.3:o:microsoft:windows_server_2008:-:sp2::::::* cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:::::x64: cpe:2.3:o:microsoft:windows_server_2012:-::::::: cpe:2.3:o:microsoft:windows_server_2012:-:r2::::::* cpe:2.3:o:microsoft:windows_server_2016:-::::::: cpe:2.3:o:microsoft:windows_server_2016:2004::::::: cpe:2.3:o:microsoft:windows_server_2019:-:::::::
Added	CPE Configuration		OR cpe:2.3:o:debian:debian_linux:9.0:::::::

CVE Modified by [email protected]

Jul. 13, 2021

Action Type Old Value New Value

Added Reference https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf [No Types Assigned]

Action	Type	Old Value	New Value
Added	Reference		https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf [No Types Assigned]

CVE Modified by [email protected]

Jun. 23, 2021

Action	Type	Old Value	New Value
Added	Reference		https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html [No Types Assigned]
Added	Reference		https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html [No Types Assigned]

Reanalysis by [email protected]

May. 21, 2021

Action	Type	Old Value	New Value
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism
Removed	CVSS V2	NIST (AV:A/AC:L/Au:N/C:N/I:P/A:N)
Added	CVSS V2		NIST (AV:A/AC:M/Au:N/C:N/I:P/A:N)
Removed	CVSS V3.1	NIST AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Added	CVSS V3.1		NIST AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Initial Analysis by [email protected]

May. 19, 2021

Action	Type	Old Value	New Value
Added	CVSS V2		NIST (AV:A/AC:L/Au:N/C:N/I:P/A:N)
Added	CVSS V3.1		NIST AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Changed	Reference Type	http://www.openwall.com/lists/oss-security/2021/05/11/12 No Types Assigned	http://www.openwall.com/lists/oss-security/2021/05/11/12 Mailing List, Third Party Advisory
Changed	Reference Type	https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md No Types Assigned	https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md Third Party Advisory
Changed	Reference Type	https://www.fragattacks.com No Types Assigned	https://www.fragattacks.com Exploit, Third Party Advisory
Added	CWE		NIST CWE-306
Added	CPE Configuration		OR cpe:2.3:a:ieee:ieee_802.11::::::::* cpe:2.3:a:linux:mac80211:-:::::::

CVE Modified by [email protected]

May. 11, 2021

Action Type Old Value New Value

Added Reference http://www.openwall.com/lists/oss-security/2021/05/11/12 [No Types Assigned]

Action	Type	Old Value	New Value
Added	Reference		http://www.openwall.com/lists/oss-security/2021/05/11/12 [No Types Assigned]

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.

CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2020-24588 is associated with the following CWEs:

CWE-327: Use of a Broken or Risky Cryptographic Algorithm

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2020-24588 weaknesses.

CAPEC-20: Encryption Brute Forcing Encryption Brute Forcing CAPEC-97: Cryptanalysis Cryptanalysis CAPEC-459: Creating a Rogue Certification Authority Certificate Creating a Rogue Certification Authority Certificate CAPEC-473: Signature Spoof Signature Spoof CAPEC-475: Signature Spoofing by Improper Validation Signature Spoofing by Improper Validation CAPEC-608: Cryptanalysis of Cellular Encryption Cryptanalysis of Cellular Encryption CAPEC-614: Rooting SIM Cards Rooting SIM Cards

CVE-2020-24588

"Wi-Fi WPA/WPA2/WPA3 WEP 802.11 Authentication Bypass"

Description

INFO

May 11, 2021, 8:15 p.m.

April 1, 2023, 10:15 p.m.

[email protected]

No

1.4

2.1

Public PoC/Exploit Available at Github

Affected Products

References to Advisories, Solutions, and Tools

kali973/fragAttacks

vanhoefm/fragattacks

CVE Modified by [email protected]

CVE Modified by [email protected]

Reanalysis by [email protected]

Modified Analysis by [email protected]

CWE Remap by [email protected]

CVE Modified by [email protected]

Modified Analysis by [email protected]

CVE Modified by [email protected]

CVE Modified by [email protected]

Reanalysis by [email protected]

Initial Analysis by [email protected]

CVE Modified by [email protected]

CWE - Common Weakness Enumeration

Common Attack Pattern Enumeration and Classification (CAPEC)

Exploit Prediction

0.32 }} -0.04%

0.70678

CVSS31 - Vulnerability Scoring System

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable