CVE-2020-26145 — Improper Input Validation in Samsung Galaxy I9305 Firmware

CWE-20 — Improper Input Validation CWE-307 — Improper Restriction of Excessive Authentication Attempts CWE-345 — Insufficient Verification of Data Authenticity CWE-772 — Missing Release of Resource after Effective Lifetime CWE-99 — Resource Injection20 documents10 sources

Severity

6.5MEDIUMNVD

EPSS

2.7%

top 14.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Siemens 6gk5763-1al00-3aa0 Firmware +12 more

Timeline

PublishedMay 11

Latest updateJul 10

Description

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages15 packages

▶NVDsamsung/galaxy_i9305_firmware4.4.4

▶CVEListV5linux/linux98686cd21624c75a043e96812beadddf4f6f48e5 — 24900688ee47071aa6a61e78473999b5b80f0423+4

▶NVDsiemens/6gk5763-1al00-3aa0_firmware< 1.2

▶NVDsiemens/6gk5763-1al00-3da0_firmware< 1.2

▶NVDsiemens/6gk5763-1al00-7da0_firmware< 1.2

Patches

Patch: cert-portal.siemens.com ↗Patch: cert-portal.siemens.com ↗

🔴Vulnerability Details

Kernel

wifi: mt76: mt7996: drop fragments with multicast or broadcast RA↗2025-05-15

▶

GHSA

GHSA-c6qp-cf89-h54c: An issue was discovered on Samsung Galaxy S3 i9305 4↗2022-05-24

▶

OSV

linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities↗2022-04-01

▶

OSV

CVE-2020-26145: An issue was discovered on Samsung Galaxy S3 i9305 4↗2021-05-11

▶

Kernel

ath10k: drop fragments with multicast DA for PCIe↗2021-05-11

▶

📋Vendor Advisories

Red Hat

kernel: wifi: mt76: mt7996: drop fragments with multicast or broadcast RA↗2025-07-10

▶

Ubuntu

Linux kernel vulnerabilities↗2022-04-01

▶

Android

CVE-2020-26145: WLAN↗2021-10-01

▶

Ubuntu

Linux kernel (KVM) vulnerabilities↗2021-06-25

▶

Ubuntu

Linux kernel (KVM) vulnerabilities↗2021-06-25

▶