cbcvebase.
CVE-2020-24588
published 2021-05-11

CVE-2020-24588: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the…

PriorityP423low3.5CVSS 3.1
AVAACLPRNUIRSUCNILAN
EPSS
3.54%
87.8th percentile
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.

Affected

58 ranges· showing 25
VendorProductVersion rangeFixed in
debiandebian_linux
debiandebian_linux
debianfirmware-nonfree< firmware-nonfree 20210818-1 (bookworm)firmware-nonfree 20210818-1 (bookworm)
debianlinux< linux 6.1.147-1 (bookworm)linux 6.1.147-1 (bookworm)
debianlinux< firmware-nonfree 20210818-1 (bookworm)firmware-nonfree 20210818-1 (bookworm)
debianlinux-6.1< linux 6.1.147-1 (bookworm)linux 6.1.147-1 (bookworm)
googleandroid
linuxlinux
linuxlinux>= 6.1.107 < 6.1.1466.1.146
linuxlinux>= 79720743421753ff72bfa0d79976c534645b81c1 < e2c8a3c0388aef6bfc4aabfba07bc7dff16eea80e2c8a3c0388aef6bfc4aabfba07bc7dff16eea80
linuxlinux>= 986e43b19ae9176093da35e0a844e65c8bf9ede7 < ec6392061de6681148b63ee6c8744da833498cddec6392061de6681148b63ee6c8744da833498cdd
linuxlinux>= 986e43b19ae9176093da35e0a844e65c8bf9ede7 < e01851f6e9a665a6011b14714b271d3e6b0b8d32e01851f6e9a665a6011b14714b271d3e6b0b8d32
linuxlinux>= 986e43b19ae9176093da35e0a844e65c8bf9ede7 < 6e3b09402cc6c3e3474fa548e8adf6897dda05de6e3b09402cc6c3e3474fa548e8adf6897dda05de
linuxlinux>= 986e43b19ae9176093da35e0a844e65c8bf9ede7 < 737bb912ebbe4571195c56eba557c4d7315b26fb737bb912ebbe4571195c56eba557c4d7315b26fb
linuxlinux_kernel
linuxlinux_kernel>= 0 < 5.10.46-15.10.46-1
linuxlinux_kernel>= 0 < 6.1.147-16.1.147-1
linuxlinux_kernel>= 0 < 5.10.46-15.10.46-1
linuxlinux_kernel>= 0 < 6.12.41-16.12.41-1
linuxlinux_kernel>= 0 < 5.10.46-15.10.46-1
linuxlinux_kernel>= 0 < 6.16.3-16.16.3-1
linuxlinux_kernel>= 0 < 5.10.46-15.10.46-1
linuxlinux_kernel>= 0 < 5.4.0-77.865.4.0-77.86
linuxlinux_kernel>= 4.14 < 4.14.2354.14.235
linuxlinux_kernel>= 4.19 < 4.19.1934.19.193

CVSS provenance

nvdv3.13.5LOWCVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
nvdv2.02.9LOWAV:A/AC:M/Au:N/C:N/I:P/A:N
osv3.5LOW
vendor_cisco6.5MEDIUM
vendor_msrc6.5MEDIUM
vendor_debian3.5LOW
vendor_redhat3.5LOW
vendor_ubuntu3.5LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.