Lucene search

[email protected]NVD:CVE-2020-26143

HistoryMay 11, 2021 - 8:15 p.m.

CVE-2020-26143

2021-05-1120:15:08

CWE-20

[email protected]

web.nvd.nist.gov

alfa windows 10 driver

unauthorized data injection

wi-fi security

CVSS2

3.3

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:A/AC:L/Au:N/C:N/I:P/A:N

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.002

Percentile

61.2%

JSON

An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration.

Affected configurations

Nvd

Node

alfaawus036h_firmwareMatch1030.36.604windows_10

AND

alfaawus036hMatch-

Node

aristac-75_firmwareMatch-

AND

aristac-75Match-

Node

aristao-90_firmwareMatch-

AND

aristao-90Match-

Node

aristac-65_firmwareMatch-

AND

aristac-65Match-

Node

aristaw-68_firmwareMatch-

AND

aristaw-68Match-

Node

siemensscalance_w700_ieee_802.11n_firmware

AND

siemensscalance_w700_ieee_802.11nMatch-

VendorProductVersionCPE
alfaawus036h_firmware1030.36.604cpe:2.3:o:alfa:awus036h_firmware:1030.36.604:*:*:*:*:windows_10:*:*
alfaawus036h-cpe:2.3:h:alfa:awus036h:-:*:*:*:*:*:*:*
aristac-75_firmware-cpe:2.3:o:arista:c-75_firmware:-:*:*:*:*:*:*:*
aristac-75-cpe:2.3:h:arista:c-75:-:*:*:*:*:*:*:*
aristao-90_firmware-cpe:2.3:o:arista:o-90_firmware:-:*:*:*:*:*:*:*
aristao-90-cpe:2.3:h:arista:o-90:-:*:*:*:*:*:*:*
aristac-65_firmware-cpe:2.3:o:arista:c-65_firmware:-:*:*:*:*:*:*:*
aristac-65-cpe:2.3:h:arista:c-65:-:*:*:*:*:*:*:*
aristaw-68_firmware-cpe:2.3:o:arista:w-68_firmware:-:*:*:*:*:*:*:*
aristaw-68-cpe:2.3:h:arista:w-68:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
alfa	awus036h_firmware	1030.36.604	cpe:2.3:o:alfa:awus036h_firmware:1030.36.604:::::windows_10::
alfa	awus036h	-	cpe:2.3:h:alfa:awus036h:-:::::::*
arista	c-75_firmware	-	cpe:2.3:o:arista:c-75_firmware:-:::::::*
arista	c-75	-	cpe:2.3:h:arista:c-75:-:::::::*
arista	o-90_firmware	-	cpe:2.3:o:arista:o-90_firmware:-:::::::*
arista	o-90	-	cpe:2.3:h:arista:o-90:-:::::::*
arista	c-65_firmware	-	cpe:2.3:o:arista:c-65_firmware:-:::::::*
arista	c-65	-	cpe:2.3:h:arista:c-65:-:::::::*
arista	w-68_firmware	-	cpe:2.3:o:arista:w-68_firmware:-:::::::*
arista	w-68	-	cpe:2.3:h:arista:w-68:-:::::::*