Vulnerability Description
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ieee | Ieee 802.11 | All versions |
| Linux | Mac80211 | - |
| Debian | Debian Linux | 9.0 |
| Arista | C-100 Firmware | - |
| Arista | C-100 | - |
| Arista | C-110 Firmware | - |
| Arista | C-110 | - |
| Arista | C-120 Firmware | - |
| Arista | C-120 | - |
| Arista | C-130 Firmware | - |
| Arista | C-130 | - |
| Arista | C-200 Firmware | - |
| Arista | C-200 | - |
| Arista | C-230 Firmware | - |
| Arista | C-230 | - |
| Arista | C-235 Firmware | - |
| Arista | C-235 | - |
| Arista | C-250 Firmware | - |
| Arista | C-250 | - |
| Arista | C-260 Firmware | - |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2021/05/11/12Mailing ListThird Party Advisory
- https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.mdThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2021/06/msg00019.htmlMailing ListThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2021/06/msg00020.htmlMailing ListThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wThird Party Advisory
- https://www.arista.com/en/support/advisories-notices/security-advisories/12602-sThird Party Advisory
- https://www.fragattacks.comExploitThird Party Advisory
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00473.Third Party Advisory
- http://www.openwall.com/lists/oss-security/2021/05/11/12Mailing ListThird Party Advisory
- https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.mdThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2021/06/msg00019.htmlMailing ListThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2021/06/msg00020.htmlMailing ListThird Party Advisory
- https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wThird Party Advisory
FAQ
What is CVE-2020-24587?
CVE-2020-24587 is a vulnerability with a CVSS score of 2.6 (LOW). The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An ad...
How severe is CVE-2020-24587?
CVE-2020-24587 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-24587?
Check the references section above for vendor advisories and patch information. Affected products include: Ieee Ieee 802.11, Linux Mac80211, Debian Debian Linux, Arista C-100 Firmware, Arista C-100.