Lucene search

K

CertccCVELIST:CVE-2017-13086

HistoryOct 17, 2017 - 1:00 p.m.

CVE-2017-13086

2017-10-1713:00:00

CWE-323

certcc

www.cve.org

7.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.5%

Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Tunneled Direct-Link Setup (TDLS) Peer Key (TPK) during the TDLS handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.

CNA Affected

[
  {
    "product": "Wi-Fi Protected Access (WPA and WPA2)",
    "vendor": "Wi-Fi Alliance",
    "versions": [
      {
        "status": "affected",
        "version": "WPA"
      },
      {
        "status": "affected",
        "version": "WPA2"
      }
    ]
  }
]

References

www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007.txt

www.debian.org/security/2017/dsa-3999

www.kb.cert.org/vuls/id/228519

www.securityfocus.com/bid/101274

www.securitytracker.com/id/1039573

www.securitytracker.com/id/1039576

www.securitytracker.com/id/1039577

www.securitytracker.com/id/1039578

www.securitytracker.com/id/1039581

www.ubuntu.com/usn/USN-3455-1

access.redhat.com/errata/RHSA-2017:2907

access.redhat.com/security/vulnerabilities/kracks

cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf

cert.vde.com/en-us/advisories/vde-2017-005

security.FreeBSD.org/advisories/FreeBSD-SA-17:07.wpa.asc

security.gentoo.org/glsa/201711-03

source.android.com/security/bulletin/2017-11-01

support.lenovo.com/us/en/product_security/LEN-17420

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa

w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt

www.krackattacks.com/

7.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.5%

Related for CVELIST:CVE-2017-13086