Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2020-26141
HistoryMay 11, 2021 - 8:15 p.m.

CVE-2020-26141

2021-05-1120:15:08
CWE-354
[email protected]
web.nvd.nist.gov
360
8
alfa
windows 10
driver
wi-fi
packet injection
decryption
wpa
wpa2
vulnerability
cve-2020-26141

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:L/Au:N/C:N/I:P/A:N

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

7.2

Confidence

High

EPSS

0.002

Percentile

61.2%

JSON

An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol.

Affected configurations

NVD
Node
alfaawus036h_firmwareMatch6.1316.1209windows_10
AND
alfaawus036hMatch-
Node
ciscomeraki_gr10_firmwareRange<27.7.1
AND
ciscomeraki_gr10Match-
Node
ciscomeraki_gr60_firmwareRange<27.7.1
AND
ciscomeraki_gr60Match-
Node
ciscomeraki_mr20_firmwareRange<27.7.1
AND
ciscomeraki_mr20Match-
Node
ciscomeraki_mr30h_firmwareRange<27.7.1
AND
ciscomeraki_mr30hMatch-
Node
ciscomeraki_mr33_firmwareRange<27.7.1
AND
ciscomeraki_mr33Match-
Node
ciscomeraki_mr36_firmwareRange<27.7.1
AND
ciscomeraki_mr36Match-
Node
ciscomeraki_mr42_firmwareRange<27.7.1
AND
ciscomeraki_mr42Match-
Node
ciscomeraki_mr42e_firmwareRange<27.7.1
AND
ciscomeraki_mr42eMatch-
Node
ciscomeraki_mr44_firmwareRange<27.7.1
AND
ciscomeraki_mr44Match-
Node
ciscomeraki_mr45_firmwareRange<27.7.1
AND
ciscomeraki_mr45Match-
Node
ciscomeraki_mr46_firmwareRange<27.7.1
AND
ciscomeraki_mr46Match-
Node
ciscomeraki_mr46e_firmwareRange<27.7.1
AND
ciscomeraki_mr46eMatch-
Node
ciscomeraki_mr52_firmwareRange<27.7.1
AND
ciscomeraki_mr52Match-
Node
ciscomeraki_mr53_firmwareRange<27.7.1
AND
ciscomeraki_mr53Match-
Node
ciscomeraki_mr53e_firmwareRange<27.7.1
AND
ciscomeraki_mr53eMatch-
Node
ciscomeraki_mr55_firmwareRange<27.7.1
AND
ciscomeraki_mr55Match-
Node
ciscomeraki_mr56_firmwareRange<27.7.1
AND
ciscomeraki_mr56Match-
Node
ciscomeraki_mr70_firmwareRange<27.7.1
AND
ciscomeraki_mr70Match-
Node
ciscomeraki_mr74_firmwareRange<27.7.1
AND
ciscomeraki_mr74Match-
Node
ciscomeraki_mr76_firmwareRange<27.7.1
AND
ciscomeraki_mr76Match-
Node
ciscomeraki_mr84_firmwareRange<27.7.1
AND
ciscomeraki_mr84Match-
Node
ciscomeraki_mr86_firmwareRange<27.7.1
AND
ciscomeraki_mr86Match-
Node
ciscomeraki_mr12_firmwareRange<26.8.3
AND
ciscomeraki_mr12Match-
Node
ciscomeraki_mr18_firmwareRange<26.8.3
AND
ciscomeraki_mr18Match-
Node
ciscomeraki_mr26_firmwareRange<26.8.3
AND
ciscomeraki_mr26Match-
Node
ciscomeraki_mr32_firmwareRange<26.8.3
AND
ciscomeraki_mr32Match-
Node
ciscomeraki_mr34_firmwareRange<26.8.3
AND
ciscomeraki_mr34Match-
Node
ciscomeraki_mr62_firmwareRange<26.8.3
AND
ciscomeraki_mr62Match-
Node
ciscomeraki_mr66_firmwareRange<26.8.3
AND
ciscomeraki_mr66Match-
Node
ciscomeraki_mr72_firmwareRange<26.8.3
AND
ciscomeraki_mr72Match-
Node
ciscomeraki_mx64w_firmwareRange<17.0
AND
ciscomeraki_mx64wMatch-
Node
ciscomeraki_mx65w_firmwareRange<17.0
AND
ciscomeraki_mx65wMatch-
Node
ciscomeraki_mx67w_firmwareRange<17.0
AND
ciscomeraki_mx67wMatch-
Node
ciscomeraki_mx67cw_firmwareRange<17.0
AND
ciscomeraki_mx67cwMatch-
Node
ciscomeraki_mx68w_firmwareRange<17.0
AND
ciscomeraki_mx68wMatch-
Node
ciscomeraki_mx68cw_firmwareRange<17.0
AND
ciscomeraki_mx68cwMatch-
Node
ciscomeraki_z3_firmwareRange<17.0
AND
ciscomeraki_z3Match-
Node
ciscomeraki_z3c_firmwareRange<17.0
AND
ciscomeraki_z3cMatch-
Node
ciscowireless_ip_phone_8821_firmwareRange<11.0\(6\)sr2
AND
ciscowireless_ip_phone_8821Match-
Node
ciscoip_phone_6861_firmwareRange<11.3\(5\)
AND
ciscoip_phone_6861Match-
Node
ciscoip_phone_8861_firmwareRange<11.3\(5\)3pcc
AND
ciscoip_phone_8861Match-3pcc
Node
ciscoip_phone_8861_firmwareRange<14.1\(1\)
AND
ciscoip_phone_8861Match-
Node
ciscoip_phone_8865_firmwareRange<14.1\(1\)
AND
ciscoip_phone_8865Match-
Node
ciscoip_conference_phone_8832_firmwareRange<14.1\(1\)
AND
ciscoip_conference_phone_8832Match-
Node
ciscowebex_room_series_firmwareRange<1.2\(0\)sr1
AND
ciscowebex_room_seriesMatch-
Node
ciscowebex_desk_series_firmwareRange<1.2\(0\)sr1
AND
ciscowebex_desk_seriesMatch-
Node
ciscowebex_board_series_firmwareRange<10.8.2.5
AND
ciscowebex_board_seriesMatch-
Node
ciscowebex_wireless_phone_860_firmwareRange<1.4\(0\)
AND
ciscowebex_wireless_phone_860Match-
Node
ciscowebex_wireless_phone_840_firmwareRange<1.4\(0\)
AND
ciscowebex_wireless_phone_840Match-
Node
siemens6gk5778-1gy00-0ab0_firmwareMatch-m12
AND
siemens6gk5778-1gy00-0ab0Match-m12
Node
siemens6gk5778-1gy00-0aa0_firmwareMatch-m12
AND
siemens6gk5778-1gy00-0aa0Match-m12
Node
siemens6gk5721-1fc00-0aa0_firmwareMatch-rj45
AND
siemens6gk5721-1fc00-0aa0Match-rj45
Node
siemens6gk5721-1fc00-0ab0_firmwareMatch-rj45
AND
siemens6gk5721-1fc00-0ab0Match-rj45
Node
siemens6gk5722-1fc00-0aa0_firmwareMatch-rj45
AND
siemens6gk5722-1fc00-0aa0Match-rj45
Node
siemens6gk5722-1fc00-0ab0_firmwareMatch-rj45
AND
siemens6gk5722-1fc00-0ab0Match-rj45
Node
siemens6gk5722-1fc00-0ac0_firmwareMatch-rj45
AND
siemens6gk5722-1fc00-0ac0Match-rj45
Node
siemens6gk5734-1fx00-0aa0_firmwareMatch-rj45
AND
siemens6gk5734-1fx00-0aa0Match-rj45
Node
siemens6gk5734-1fx00-0aa6_firmwareMatch-rj45
AND
siemens6gk5734-1fx00-0aa6Match-rj45
Node
siemens6gk5734-1fx00-0ab0_firmwareMatch-rj45
AND
siemens6gk5734-1fx00-0ab0Match-rj45
Node
siemens6gk5734-1fx00-0ab6_firmwareMatch-rj45
AND
siemens6gk5734-1fx00-0ab6Match-rj45
Node
siemens6gk5738-1gy00-0aa0_firmwareMatch-m12
AND
siemens6gk5738-1gy00-0aa0Match-m12
Node
siemens6gk5738-1gy00-0ab0_firmwareMatch-m12
AND
siemens6gk5738-1gy00-0ab0Match-m12
Node
siemens6gk5748-1fc00-0aa0_firmwareMatch-rj45
AND
siemens6gk5748-1fc00-0aa0Match-rj45
Node
siemens6gk5748-1fc00-0ab0_firmwareMatch-rj45
AND
siemens6gk5748-1fc00-0ab0Match-rj45
Node
siemens6gk5748-1gd00-0aa0_firmwareMatch-m12
AND
siemens6gk5748-1gd00-0aa0Match-m12
Node
siemens6gk5748-1gd00-0ab0_firmwareMatch-m12
AND
siemens6gk5748-1gd00-0ab0Match-m12
Node
siemens6gk5761-1fc00-0aa0_firmwareMatch-rj45
AND
siemens6gk5761-1fc00-0aa0Match-rj45
Node
siemens6gk5761-1fc00-0ab0_firmwareMatch-rj45
AND
siemens6gk5761-1fc00-0ab0Match-rj45
Node
siemens6gk5774-1fx00-0aa0_firmwareMatch-rj45
AND
siemens6gk5774-1fx00-0aa0Match-rj45
Node
siemens6gk5774-1fx00-0aa6_firmwareMatch-rj45
AND
siemens6gk5774-1fx00-0aa6Match-rj45
Node
siemens6gk5774-1fx00-0ab0_firmwareMatch-rj45
AND
siemens6gk5774-1fx00-0ab0Match-rj45
Node
siemens6gk5774-1fx00-0ab6_firmwareMatch-rj45
AND
siemens6gk5774-1fx00-0ab6Match-rj45
Node
siemens6gk5774-1fy00-0ta0_firmwareMatch-m12_ecc
AND
siemens6gk5774-1fy00-0ta0Match-m12_ecc
Node
siemens6gk5774-1fy00-0tb0_firmwareMatch-m12_ecc
AND
siemens6gk5774-1fy00-0tb0Match-m12_ecc
Node
siemens6gk5778-1gy00-0ta0_firmwareMatch-m12_ecc
AND
siemens6gk5778-1gy00-0ta0Match-m12_ecc
Node
siemens6gk5778-1gy00-0tb0_firmwareMatch-m12_ecc
AND
siemens6gk5778-1gy00-0tb0Match-m12_ecc
Node
siemens6gk5786-1fc00-0aa0_firmwareMatch-rj45
AND
siemens6gk5786-1fc00-0aa0Match-rj45
Node
siemens6gk5786-1fc00-0ab0_firmwareMatch-rj45
AND
siemens6gk5786-1fc00-0ab0Match-rj45
Node
siemens6gk5786-2fc00-0aa0_firmwareMatch-rj45
AND
siemens6gk5786-2fc00-0aa0Match-rj45
Node
siemens6gk5786-2fc00-0ab0_firmwareMatch-rj45
AND
siemens6gk5786-2fc00-0ab0Match-rj45
Node
siemens6gk5786-2fc00-0ac0_firmwareMatch-rj45
AND
siemens6gk5786-2fc00-0ac0Match-rj45
Node
siemens6gk5786-2hc00-0aa0_firmwareMatch-rj45
AND
siemens6gk5786-2hc00-0aa0Match-rj45
Node
siemens6gk5786-2hc00-0ab0_firmwareMatch-rj45
AND
siemens6gk5786-2hc00-0ab0Match-rj45
Node
siemens6gk5788-1fc00-0aa0_firmwareMatch-rj45
AND
siemens6gk5788-1fc00-0aa0Match-rj45
Node
siemens6gk5788-1fc00-0ab0_firmwareMatch-rj45
AND
siemens6gk5788-1fc00-0ab0Match-rj45
Node
siemens6gk5788-1gd00-0aa0_firmwareMatch-m12
AND
siemens6gk5788-1gd00-0aa0Match-m12
Node
siemens6gk5788-1gd00-0ab0_firmwareMatch-m12
AND
siemens6gk5788-1gd00-0ab0Match-m12
Node
siemens6gk5788-2fc00-0aa0_firmwareMatch-rj45
AND
siemens6gk5788-2fc00-0aa0Match-rj45
Node
siemens6gk5788-2fc00-0ab0_firmwareMatch-rj45
AND
siemens6gk5788-2fc00-0ab0Match-rj45
Node
siemens6gk5788-2fc00-0ac0_firmwareMatch-rj45
AND
siemens6gk5788-2fc00-0ac0Match-rj45
Node
siemens6gk5788-2gd00-0aa0_firmwareMatch-m12
AND
siemens6gk5788-2gd00-0aa0Match-m12
Node
siemens6gk5788-2gd00-0ab0_firmwareMatch-m12
AND
siemens6gk5788-2gd00-0ab0Match-m12
Node
siemens6gk5788-2gd00-0ta0_firmwareMatch-m12_ecc
AND
siemens6gk5788-2gd00-0ta0Match-m12_ecc
Node
siemens6gk5788-2gd00-0tb0_firmwareMatch-m12_ecc
AND
siemens6gk5788-2gd00-0tb0Match-m12_ecc
Node
siemens6gk5788-2gd00-0tc0_firmwareMatch-m12_ecc
AND
siemens6gk5788-2gd00-0tc0Match-m12_ecc
VendorProductVersionCPE
alfaawus036h_firmware6.1316.1209cpe:/o:alfa:awus036h_firmware:6.1316.1209:::

Social References

More

Related

redhatcve 1
debiancve 1
cvelist 1
ubuntucve 1
veracode 1
nvd 1
nessus 48
prion 1
ics 2
oraclelinux 4
openvas 28
mageia 2
checkpoint_security 1
thn 1
suse 4
threatpost 1
malwarebytes 1
hackerone 1
cisco 1
arista 1
ubuntu 7
osv 6
cloudfoundry 1
almalinux 1
redhat 4
redhatcve
redhatcve
CVE-2020-26141
2021-05-19 00:26:25
debiancve
debiancve
CVE-2020-26141
2021-05-11 20:15:08
cvelist
cvelist
CVE-2020-26141
2021-05-11 19:42:11
ubuntucve
ubuntucve
CVE-2020-26141
2021-05-11 00:00:00
veracode
veracode
Packet Injection
2021-11-17 22:37:34
nvd
nvd
CVE-2020-26141
2021-05-11 20:15:08
nessus
nessus
Cisco Multiple Products Use of a Broken or Risky Cryptographic Algorithm (CVE-2020-26141)
2024-03-18 00:00:00
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9406)
2021-08-10 00:00:00
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9404)
2021-08-10 00:00:00
prion
prion
Information disclosure
2021-05-11 20:15:00
ics
ics
Siemens SCALANCE FragAttacks
2022-04-14 12:00:00
Hitachi ABB Power Grids TropOS
2021-08-24 12:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2021-08-10 00:00:00
Unbreakable Enterprise kernel-container security update
2021-08-10 00:00:00
Unbreakable Enterprise kernel security update
2021-09-22 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0257)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2021-0258)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1888-1)
2021-06-09 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2021-06-14 00:32:39
Updated kernel-linus packages fix security vulnerabilities
2021-06-14 00:32:39
checkpoint_security
checkpoint_security
Check Point Response to Wi-Fi FragAttacks in Quantum Spark appliances
2021-06-09 23:24:30
thn
thn
Nearly All Wi-Fi Devices Are Vulnerable to New FragAttacks
2021-05-12 13:07:00
suse
suse
Security update for the Linux Kernel (important)
2021-06-06 00:00:00
Security update for the Linux Kernel (important)
2021-07-01 00:00:00
Security update for the Linux Kernel (important)
2021-07-11 00:00:00
threatpost
threatpost
‘FragAttacks’: Wi-Fi Bugs Affect Millions of Devices
2021-05-12 15:48:05
malwarebytes
malwarebytes
FragAttack: New Wi-Fi vulnerabilities that affect… basically everything
2021-05-12 17:31:21
hackerone
hackerone
Internet Bug Bounty: Fragmentation and Aggregation Flaws in Wi-Fi
2021-06-19 21:24:25
cisco
cisco
Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification Affecting Cisco Products: May 2021
2021-05-11 18:00:00
arista
arista
Security Advisory 0063
2021-05-12 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2022-04-01 00:00:00
Linux kernel (OEM) vulnerabilities
2021-06-23 00:00:00
Linux kernel vulnerabilities
2021-06-23 00:00:00
osv
osv
linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities
2022-04-01 00:37:48
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke, linux-gke-5.4, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities
2021-06-23 03:36:14
linux-kvm vulnerabilities
2021-06-25 19:56:40
cloudfoundry
cloudfoundry
USN-5000-1: Linux kernel vulnerabilities | Cloud Foundry
2021-07-08 00:00:00
almalinux
almalinux
Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02
redhat
redhat
(RHSA-2021:4140) Moderate: kernel-rt security and bug fix update
2021-11-09 08:21:02
(RHSA-2021:4356) Moderate: kernel security, bug fix, and enhancement update
2021-11-09 09:08:02
(RHSA-2021:4627) Moderate: Openshift Logging 5.3.0 bug fix and security update
2021-11-15 12:52:28

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:L/Au:N/C:N/I:P/A:N

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

AI Score

7.2

Confidence

High

EPSS

0.002

Percentile

61.2%

JSON
Related for CVE-2020-26141
redhatcve1debiancve1cvelist1ubuntucve1veracode1nvd1nessus48prion1ics2oraclelinux4openvas28mageia2checkpoint_security1thn1suse4threatpost1malwarebytes1hackerone1cisco1arista1ubuntu7osv6cloudfoundry1almalinux1redhat4