Svi
Pretraži prema proizvođaču
Pretraži prema CWE oznaci
O usluzi
Pretplate
Jezik
hr
en
CVE-2017-13084 - CERT CVE
CVE-2017-13084
ID
CVE-2017-13084
Sažetak
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
Reference
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007.txt
http://www.kb.cert.org/vuls/id/228519
http://www.securityfocus.com/bid/101274
http://www.securitytracker.com/id/1039576
http://www.securitytracker.com/id/1039577
http://www.securitytracker.com/id/1039581
https://access.redhat.com/security/vulnerabilities/kracks
https://cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf
https://security.gentoo.org/glsa/201711-03
https://support.lenovo.com/us/en/product_security/LEN-17420
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
https://www.krackattacks.com/
CVSS
Base:
5.4
Impact:
6.4
Exploitability:
5.5
Pristup
Vektor
Složenost
Autentikacija
ADJACENT_NETWORK
MEDIUM
NONE
Impact
Povjerljivost
Cjelovitost
Dostupnost
PARTIAL
PARTIAL
PARTIAL
CVSS vektor
AV:A/AC:M/Au:N/C:P/I:P/A:P
Zadnje važnije ažuriranje
03-10-2019 - 00:03
Objavljeno
17-10-2017 - 13:29