Lucene search

K
cvelistCertccCVELIST:CVE-2017-13077
HistoryOct 17, 2017 - 2:00 a.m.

CVE-2017-13077

2017-10-1702:00:00
certcc
www.cve.org
11
cve-2017-13077
pairwise transient key
temporal key
four-way handshake
radio range
replay attack
decrypt frames
spoof frames

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

53.1%

Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the four-way handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.

CNA Affected

[
  {
    "product": "Wi-Fi Protected Access (WPA and WPA2)",
    "vendor": "Wi-Fi Alliance",
    "versions": [
      {
        "status": "affected",
        "version": "WPA"
      },
      {
        "status": "affected",
        "version": "WPA2"
      }
    ]
  }
]

References