Lucene search
PRIOn knowledge basePRION:CVE-2019-12587HistorySep 04, 2019 - 12:15 p.m.
Authentication flaw
2019-09-0412:15:00
PRIOn knowledge base
www.prio-n.com
2
The EAP peer implementation in Espressif ESP-IDF 2.0.0 through 4.0.0 and ESP8266_NONOS_SDK 2.2.0 through 3.1.0 allows the installation of a zero Pairwise Master Key (PMK) after the completion of any EAP authentication method, which allows attackers in radio range to replay, decrypt, or spoof frames via a rogue access point.
| CPE | Name | Operator | Version |
|---|---|---|---|
| esp-idf | ge | 2.0.0 | |
| esp-idf | le | 4.0.0 | |
| esp8266_nonos_sdk | ge | 2.2.0 | |
| esp8266_nonos_sdk | le | 3.1.0 |
Related
nvd
nvd
CVE-2019-12587
2019-09-04 12:15:11
cve
cve
CVE-2019-12587
2019-09-04 12:15:11
osv
osv
CVE-2019-12587
2019-09-04 12:15:11
cvelist
cvelist
CVE-2019-12587
2019-09-04 11:31:48
githubexploit
githubexploit
Exploit for Vulnerability in Espressif Arduino-Esp32
2019-09-03 15:08:49