Informazioni sul CVE-2017-13081
N/A
CWE ID: CWE-323
Base Score (CVSS): N/A
CVE: CVE-2017-13081
Descrizione: Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the group key handshake, allowing an attacker within radio range to spoof frames from access points to clients.
Vettore di attacco
Punteggio CVSS
Il CVSS è un sistema di valutazione che misura la gravità di una vulnerabilità informatica considerando fattori come l’impatto potenziale, la probabilità di attacco e la facilità di esecuzione.
Punteggio Base (calcolato da AziendaSicura): 0.0 (None)
Riassunto: .
Dettaglio del Vettore
| Metrica | Valore | Significato | Descrizione |
|---|
Riferimenti esterni
- http://www.securitytracker.com/id/1039581
- http://www.securityfocus.com/bid/101274
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00020.html
- http://www.debian.org/security/2017/dsa-3999
- http://www.securitytracker.com/id/1039578
- https://access.redhat.com/security/vulnerabilities/kracks
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa
- https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
- http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007.txt
- http://www.securitytracker.com/id/1039577
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03792en_us
- http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00024.html
- https://source.android.com/security/bulletin/2017-11-01
- https://security.gentoo.org/glsa/201711-03
- https://security.FreeBSD.org/advisories/FreeBSD-SA-17:07.wpa.asc
- https://www.krackattacks.com/
- http://www.securitytracker.com/id/1039573
- http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00023.html
- http://www.securitytracker.com/id/1039576
- http://www.securitytracker.com/id/1039585
- http://www.kb.cert.org/vuls/id/228519
- https://lists.debian.org/debian-lts-announce/2018/11/msg00015.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf
- https://cert.vde.com/en-us/advisories/vde-2017-005
- http://www.ubuntu.com/usn/USN-3455-1
Prodotti interessati
- Wi-Fi Alliance – Wi-Fi Protected Access (WPA and WPA2)
Relazioni con altri prodotti
Produttore:Wi-Fi Alliance
Prodotto: Wi-Fi Protected Access (WPA and WPA2)
Anno: 2017
CWE: CWE-323
CVSS: 0.0