CVE-2020-26146

EPSS 1.05%
Veröffentlicht 11.05.2021 20:15:08
Zuletzt bearbeitet 21.11.2024 05:19:22
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfiltrate selected fragments. This vulnerability is exploitable when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used. Note that WEP is vulnerable to this attack by design.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Samsung ≫ Galaxy I9305 Firmware Version4.4.4

Samsung ≫ Galaxy I9305 Version-

Arista ≫ C-250 Firmware Version < 10.0.1-31

Arista ≫ C-250 Version-

Arista ≫ C-260 Firmware Version < 10.0.1-31

Arista ≫ C-260 Version-

Arista ≫ C-230 Firmware Version < 10.0.1-31

Arista ≫ C-230 Version-

Arista ≫ C-235 Firmware Version < 10.0.1-31

Arista ≫ C-235 Version-

Arista ≫ C-200 Firmware Version < 11.0.0-36

Arista ≫ C-200 Version-

Arista ≫ C-120 Firmware Version < 11.0.0-36

Arista ≫ C-120 Version-

Arista ≫ C-130 Firmware Version < 11.0.0-36

Arista ≫ C-130 Version-

Arista ≫ C-100 Firmware Version < 11.0.0-36

Arista ≫ C-100 Version-

Arista ≫ C-110 Firmware Version < 11.0.0-36

Arista ≫ C-110 Version-

Arista ≫ O-105 Firmware Version < 11.0.0-36

Arista ≫ O-105 Version-

Arista ≫ W-118 Firmware Version < 11.0.0-36

Arista ≫ W-118 Version-

Arista ≫ C-75 Firmware Version-

Arista ≫ C-75 Version-

Arista ≫ O-90 Firmware Version-

Arista ≫ O-90 Version-

Arista ≫ C-65 Firmware Version-

Arista ≫ C-65 Version-

Arista ≫ W-68 Firmware Version-

Arista ≫ W-68 Version-

Siemens ≫ Scalance W700 Ieee 802.11n Firmware

Siemens ≫ Scalance W700 Ieee 802.11n Version-

Siemens ≫ Scalance W1700 Ieee 802.11ac Firmware

Siemens ≫ Scalance W1700 Ieee 802.11ac Version-

Siemens ≫ Scalance W1750d Firmware Version < 8.7.1.3

Siemens ≫ Scalance W1750d Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.05%	0.768

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.3	1.6	3.6	CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
nvd@nist.gov	2.9	5.5	2.9	AV:A/AC:M/Au:N/C:N/I:P/A:N

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63

Third Party Advisory

http://www.openwall.com/lists/oss-security/2021/05/11/12

Third Party Advisory

Mailing List

https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md

Third Party Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu

Third Party Advisory

https://www.fragattacks.com

Third Party Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf