Lucene search
CiscoCISCO-SA-WIFI-FAF-22EPCEWUHistoryMay 11, 2021 - 6:00 p.m.
Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification Affecting Cisco Products: May 2021
2021-05-1118:00:00
tools.cisco.com
97
EPSS
0.004
Percentile
72.1%
On May 11, 2021, the research paper Fragment and Forge: Breaking Wi-Fi Through Frame Aggregation and Fragmentation was made public. This paper discusses 12 vulnerabilities in the 802.11 standard. One vulnerability is in the frame aggregation functionality, two vulnerabilities are in the frame fragmentation functionality, and the other nine are implementation vulnerabilities. These vulnerabilities could allow an attacker to forge encrypted frames, which could in turn enable the exfiltration of sensitive data from a targeted device.
This advisory will be updated as additional information becomes available.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu”]
Affected configurations
Node
ciscoaironet_access_point_softwareMatchany
ORciscoip_phone_6825_with_multiplatform_firmwareMatchany
ORciscotelepresence_ce_softwareMatchany
ORciscowebex_room_phone_firmwareMatchany
ORciscoaironet_access_point_softwareMatchany
ORciscoaironet_access_point_softwareMatchany
ORciscoaironet_access_point_softwareMatchany
ORciscoip_phone_6825_with_multiplatform_firmwareMatchany
ORciscotelepresence_ce_softwareMatchany
ORciscowebex_room_phone_firmwareMatchany
ORciscoaironet_access_point_softwareMatchany
ORciscoaironet_access_point_softwareMatchany
Related
threatpost
threatpost
‘FragAttacks’: Wi-Fi Bugs Affect Millions of Devices
2021-05-12 15:48:05
hackerone
hackerone
Internet Bug Bounty: Fragmentation and Aggregation Flaws in Wi-Fi
2021-06-19 21:24:25
ics
ics
Hitachi ABB Power Grids TropOS
2021-08-24 12:00:00
Siemens SCALANCE FragAttacks
2022-04-14 12:00:00
Mitsubishi Electric GT25-WLAN (Update A)
2022-05-12 12:00:00
malwarebytes
malwarebytes
FragAttack: New Wi-Fi vulnerabilities that affect… basically everything
2021-05-12 17:31:21
thn
thn
Nearly All Wi-Fi Devices Are Vulnerable to New FragAttacks
2021-05-12 13:07:00
checkpoint_security
checkpoint_security
Check Point Response to Wi-Fi FragAttacks in Quantum Spark appliances
2021-06-09 23:24:30
arista
arista
Security Advisory 0063
2021-05-12 00:00:00
nessus
nessus
EulerOS 2.0 SP8 : kernel (EulerOS-SA-2022-1366)
2022-04-11 00:00:00
EulerOS 2.0 SP5 : kernel (EulerOS-SA-2021-2663)
2021-11-11 00:00:00
EulerOS Virtualization 3.0.2.0 : kernel (EulerOS-SA-2022-1681)
2022-05-07 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-1366)
2022-04-11 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2021-2663)
2021-11-12 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-1681)
2022-05-09 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2021-09-22 00:00:00
Unbreakable Enterprise kernel security update
2021-08-10 00:00:00
Unbreakable Enterprise kernel-container security update
2021-08-10 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2021-06-14 00:32:39
Updated kernel-linus packages fix security vulnerabilities
2021-06-14 00:32:39
freebsd_advisory
freebsd_advisory
FreeBSD-SA-22:02.wifi
2022-03-15 00:00:00
freebsd
freebsd
FreeBSD-kernel -- Multiple WiFi issues
2022-03-15 00:00:00
lenovo
lenovo
hp
hp
intel
intel
suse
suse
Security update for the Linux Kernel (important)
2021-07-01 00:00:00
Security update for the Linux Kernel (important)
2021-06-06 00:00:00
cloudfoundry
cloudfoundry
USN-5000-1: Linux kernel vulnerabilities | Cloud Foundry
2021-07-08 00:00:00
osv
osv
linux-kvm vulnerabilities
2021-06-25 19:56:40
linux-oem-5.10 vulnerabilities
2021-06-23 03:45:22
ubuntu
ubuntu
Linux kernel (OEM) vulnerabilities
2021-06-23 00:00:00
Linux kernel vulnerabilities
2021-06-23 00:00:00
Linux kernel (KVM) vulnerabilities
2021-06-25 00:00:00
nvd
nvd
cve
cve
debiancve
debiancve
prion
prion
Design/Logic Flaw
2021-05-11 20:15:00
Design/Logic Flaw
2021-05-11 20:15:00
Design/Logic Flaw
2021-05-11 20:15:00
cvelist
cvelist
ubuntucve
ubuntucve
redhatcve
redhatcve
veracode
veracode
Packet Injection
2021-11-17 22:37:25
Packet Injection
2021-11-17 22:37:42
Network Packet Injection
2021-11-17 22:37:50
almalinux
almalinux
Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02
mscve
mscve
Windows Wireless Networking Spoofing Vulnerability
2021-05-11 07:00:00
Windows Wireless Networking Spoofing Vulnerability
2021-05-11 07:00:00
fortinet
fortinet
Protect
2021-06-01 00:00:00
redhat
redhat
(RHSA-2021:4140) Moderate: kernel-rt security and bug fix update
2021-11-09 08:21:02