FortiGuard LabsFG-IR-21-071Protect
5.3 Medium
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
2.9 Low
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:M/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
52.2%
On May 11th, 2021, Mathy Vanhoef (New York University Abu Dhabi) published a new paper, Fragment and Forge: Breaking Wi-Fi Through Frame Aggregation and Fragmentation, on a number of vulnerabilities in the base 802.11 protocol (802.11 is the standard that Wi-Fi is built on). The paper discloses three design flaws in the 802.11 standard and nine common implementation flaws related to aggregation and fragmentation functionality.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fortiap-w2 | eq | 7.0.0 | |
| fortiap-w2 | eq | 6.4.6 | |
| fortiap-w2 | eq | 6.4.5 | |
| fortiap-w2 | eq | 6.4.4 | |
| fortiap-w2 | eq | 6.4.3 | |
| fortiap-w2 | eq | 6.4.2 | |
| fortiap-w2 | eq | 6.4.1 | |
| fortiap-w2 | eq | 6.4.0 | |
| fortiap-w2 | eq | 6.2.6 | |
| fortiap-w2 | eq | 6.2.5 |
Related
5.3 Medium
CVSS3
Attack Vector
ADJACENT_NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
2.9 Low
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:A/AC:M/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
52.2%