CVE-2021-27803
published 2021-02-26CVE-2021-27803: A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in…
PriorityP339high7.5CVSS 3.1
AVAACHPRNUINSUCHIHAH
EPSS
1.23%
65.1th percentile
A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in denial of service or other impact (potentially execution of arbitrary code), for an attacker within radio range.
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | wpa | < wpa 2:2.9.0-21 (bookworm) | wpa 2:2.9.0-21 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| msrc | wpa_supplicant-2.10-1.cm2.aarch64.rpm_on_cbl_mariner_2.0_arm | — | — |
| msrc | wpa_supplicant-2.10-1.cm2.x86_64.rpm_on_cbl_mariner_2.0_x64 | — | — |
| msrc | wpa_supplicant-2.9-3.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm | — | — |
| msrc | wpa_supplicant-2.9-3.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64 | — | — |
| msrc | wpa_supplicant-debuginfo-2.10-1.cm2.aarch64.rpm_on_cbl_mariner_2.0_arm | — | — |
| msrc | wpa_supplicant-debuginfo-2.10-1.cm2.x86_64.rpm_on_cbl_mariner_2.0_x64 | — | — |
| msrc | wpa_supplicant-debuginfo-2.9-3.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm | — | — |
| msrc | wpa_supplicant-debuginfo-2.9-3.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64 | — | — |
| w1.fi | wpa_supplicant | >= 0 < 2:2.9.0-21 | 2:2.9.0-21 |
| w1.fi | wpa_supplicant | >= 0 < 2:2.9.0-21 | 2:2.9.0-21 |
| w1.fi | wpa_supplicant | >= 0 < 2:2.9.0-21 | 2:2.9.0-21 |
| w1.fi | wpa_supplicant | >= 0 < 2:2.9.0-21 | 2:2.9.0-21 |
| w1.fi | wpa_supplicant | >= 1.0 < 2.10 | 2.10 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.4MEDIUMAV:A/AC:M/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
vendor_msrc7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
wpa_supplicant and hostapd vulnerability
vendor_ubuntu·2021-03-04
CVE-2021-27803 wpa_supplicant and hostapd vulnerability
Title: wpa_supplicant and hostapd vulnerability
Summary: wpa_supplicant could be made to crash or run programs if it received
specially crafted network traffic.
USN-4757-1 fixed a vulnerability in wpa_supplicant and hostapd. This update
provides the corresponding update for Ubuntu 14.04 ESM.
Original advisory details:
It was discovered that wpa_supplicant did not properly handle P2P
(Wi-Fi Direct) provision discovery requests in some situations. A
physically proximate attacker could use this to cause a denial of service
or possibly execute arbitrary code.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
Ubuntu
wpa_supplicant and hostapd vulnerability
vendor_ubuntu·2021-03-03
CVE-2021-27803 wpa_supplicant and hostapd vulnerability
Title: wpa_supplicant and hostapd vulnerability
Summary: wpa_supplicant could be made to crash or run programs if it received
specially crafted network traffic.
It was discovered that wpa_supplicant did not properly handle P2P
(Wi-Fi Direct) provision discovery requests in some situations. A
physically proximate attacker could use this to cause a denial of service
or possibly execute arbitrary code.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
Red Hat
wpa_supplicant: Use-after-free in P2P provision discovery processing
vendor_redhat·2021-02-25·CVSS 7.5
CVE-2021-27803 [HIGH] CWE-416 wpa_supplicant: Use-after-free in P2P provision discovery processing
wpa_supplicant: Use-after-free in P2P provision discovery processing
A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in denial of service or other impact (potentially execution of arbitrary code), for an attacker within radio range.
A flaw was found in the wpa_supplicant, in the way it processes P2P (Wi-Fi Direct) provision discovery requests. This flaw allows an attacker who is within radio range of the device running P2P discovery to cause termination of the wpa_supplicant process or potentially cause code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Statement: An attacker (or a system controlled by the a
Microsoft
A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in denial of service or other impact (potent
vendor_msrc·2021-02-09·CVSS 7.5
CVE-2021-27803 [HIGH] A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in denial of service or other impact (potent
A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in denial of service or other impact (potentially execution of arbitrary code) for an attacker within radio range.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more informati
Debian
CVE-2021-27803: wpa - A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10...
vendor_debian·2021·CVSS 7.5
CVE-2021-27803 [HIGH] CVE-2021-27803: wpa - A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10...
A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in denial of service or other impact (potentially execution of arbitrary code), for an attacker within radio range.
Scope: local
bookworm: resolved (fixed in 2:2.9.0-21)
bullseye: resolved (fixed in 2:2.9.0-21)
forky: resolved (fixed in 2:2.9.0-21)
sid: resolved (fixed in 2:2.9.0-21)
trixie: resolved (fixed in 2:2.9.0-21)
GHSA
GHSA-66mx-93rr-rg39: A vulnerability was discovered in how p2p/p2p_pd
ghsa_unreviewed·2022-05-24
CVE-2021-27803 [HIGH] GHSA-66mx-93rr-rg39: A vulnerability was discovered in how p2p/p2p_pd
A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in denial of service or other impact (potentially execution of arbitrary code), for an attacker within radio range.
OSV
CVE-2021-27803: A vulnerability was discovered in how p2p/p2p_pd
osv·2021-02-26·CVSS 7.5
CVE-2021-27803 [HIGH] CVE-2021-27803: A vulnerability was discovered in how p2p/p2p_pd
A vulnerability was discovered in how p2p/p2p_pd.c in wpa_supplicant before 2.10 processes P2P (Wi-Fi Direct) provision discovery requests. It could result in denial of service or other impact (potentially execution of arbitrary code), for an attacker within radio range.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.openwall.com/lists/oss-security/2021/02/27/1https://lists.debian.org/debian-lts-announce/2021/03/msg00003.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZGUR5XFHATVXTRAEJMODS7ROYHA56NX/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KOGP2VIVVXXQ6CZ2HU4DKGPDB4WR24XF/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SEHS2CFGH3KCSNPHBHNGN5SGV6QPMLZ4/https://w1.fi/security/2021-1/0001-P2P-Fix-a-corner-case-in-peer-addition-based-on-PD-R.patchhttps://w1.fi/security/2021-1/wpa_supplicant-p2p-provision-discovery-processing-vulnerability.txthttps://www.debian.org/security/2021/dsa-4898https://www.openwall.com/lists/oss-security/2021/02/25/3http://www.openwall.com/lists/oss-security/2021/02/27/1https://lists.debian.org/debian-lts-announce/2021/03/msg00003.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IZGUR5XFHATVXTRAEJMODS7ROYHA56NX/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KOGP2VIVVXXQ6CZ2HU4DKGPDB4WR24XF/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SEHS2CFGH3KCSNPHBHNGN5SGV6QPMLZ4/https://w1.fi/security/2021-1/0001-P2P-Fix-a-corner-case-in-peer-addition-based-on-PD-R.patchhttps://w1.fi/security/2021-1/wpa_supplicant-p2p-provision-discovery-processing-vulnerability.txthttps://www.debian.org/security/2021/dsa-4898https://www.openwall.com/lists/oss-security/2021/02/25/3
2021-02-26
Published