CVE-2020-26146
published 2021-05-11CVE-2020-26146: An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet…
medium5.3CVSS 3.1
AVAACHPRNUINSUCNIHAN
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfiltrate selected fragments. This vulnerability is exploitable when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used. Note that WEP is vulnerable to this attack by design.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arista | c-100_firmware | < 11.0.0-36 | 11.0.0-36 |
| arista | c-110_firmware | < 11.0.0-36 | 11.0.0-36 |
| arista | c-120_firmware | < 11.0.0-36 | 11.0.0-36 |
| arista | c-130_firmware | < 11.0.0-36 | 11.0.0-36 |
| arista | c-200_firmware | < 11.0.0-36 | 11.0.0-36 |
| arista | c-230_firmware | < 10.0.1-31 | 10.0.1-31 |
| arista | c-235_firmware | < 10.0.1-31 | 10.0.1-31 |
| arista | c-250_firmware | < 10.0.1-31 | 10.0.1-31 |
| arista | c-260_firmware | < 10.0.1-31 | 10.0.1-31 |
| arista | o-105_firmware | < 11.0.0-36 | 11.0.0-36 |
| arista | w-118_firmware | < 11.0.0-36 | 11.0.0-36 |
| android | — | — | |
| samsung | galaxy_i9305_firmware | — | — |
| siemens | scalance_w1750d_firmware | < 8.7.1.3 | 8.7.1.3 |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
osv5.3MEDIUM