IM
IronMonkey Threat Research

CVE-2017-13078 MEDIUM

Published: 2017-10-17 | Last Modified: 2026-06-17 | Status: Modified

Description

Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the four-way handshake, allowing an attacker within radio range to replay frames from access points to clients.

Additional Descriptions (1)

Wi-Fi Protected Access (WPA y WPA2) permite la reinstalaciĆ³n de la clave temporal GTK (Group Temporal Key) durante la negociaciĆ³n en cuatro pasos, haciendo que un atacante en el rango de radio reproduzca frames desde los puntos de acceso hasta los clientes.

CVSS Metrics

Base Score: 2.9 (LOW)

AV:A/AC:M/Au:N/C:N/I:P/A:N

Access VectorADJACENT_NETWORK
Access ComplexityMEDIUM
AuthenticationNONE
Confidentiality ImpactNONE
Integrity ImpactPARTIAL
Availability ImpactNONE

Source: [email protected]

Type: Primary

Exploitability Score: 5.5

Impact Score: 2.9

Weaknesses

Source Type Description
[email protected] Secondary
en CWE-323
[email protected] Primary
en CWE-330

Affected Products

Vendor Product Version Update Type
canonical ubuntu_linux 14.04 <built-in method update of dict object at 0x72a9ccd2b440> Operating System
canonical ubuntu_linux 16.04 <built-in method update of dict object at 0x72a9b0b6be00> Operating System
canonical ubuntu_linux 17.04 <built-in method update of dict object at 0x72a9b0b68e00> Operating System
debian debian_linux 8.0 <built-in method update of dict object at 0x72a9ccd2bc00> Operating System
debian debian_linux 9.0 <built-in method update of dict object at 0x72a9ccd2b600> Operating System
freebsd freebsd * <built-in method update of dict object at 0x72a9ccd2a000> Operating System
freebsd freebsd 10 <built-in method update of dict object at 0x72a9ccd28400> Operating System
freebsd freebsd 10.4 <built-in method update of dict object at 0x72a9ccd29f40> Operating System
freebsd freebsd 11 <built-in method update of dict object at 0x72a9b0b3aec0> Operating System
freebsd freebsd 11.1 <built-in method update of dict object at 0x72a9ccd2b980> Operating System
opensuse leap 42.2 <built-in method update of dict object at 0x72a9ccd2af40> Operating System
opensuse leap 42.3 <built-in method update of dict object at 0x72a9ccd2bec0> Operating System
redhat enterprise_linux_desktop 7 <built-in method update of dict object at 0x72a9cc6db280> Operating System
redhat enterprise_linux_server 7 <built-in method update of dict object at 0x72a9ccd28080> Operating System
w1.fi hostapd 0.2.4 <built-in method update of dict object at 0x72a9ebd5a600> Application
w1.fi hostapd 0.2.5 <built-in method update of dict object at 0x72a9b0b6ac80> Application
w1.fi hostapd 0.2.6 <built-in method update of dict object at 0x72a9b0b6a6c0> Application
w1.fi hostapd 0.2.8 <built-in method update of dict object at 0x72a9b0b39900> Application
w1.fi hostapd 0.3.7 <built-in method update of dict object at 0x72a9ccd29fc0> Application
w1.fi hostapd 0.3.9 <built-in method update of dict object at 0x72a9b0b3bfc0> Application
w1.fi hostapd 0.3.10 <built-in method update of dict object at 0x72a9ccd2ba40> Application
w1.fi hostapd 0.3.11 <built-in method update of dict object at 0x72a9cc698f80> Application
w1.fi hostapd 0.4.7 <built-in method update of dict object at 0x72a9ccd29100> Application
w1.fi hostapd 0.4.8 <built-in method update of dict object at 0x72a9b0b68400> Application
w1.fi hostapd 0.4.9 <built-in method update of dict object at 0x72a9ccd2be40> Application
w1.fi hostapd 0.4.10 <built-in method update of dict object at 0x72a9b0905080> Application
w1.fi hostapd 0.4.11 <built-in method update of dict object at 0x72a9ccd29f80> Application
w1.fi hostapd 0.5.7 <built-in method update of dict object at 0x72a9b0b68bc0> Application
w1.fi hostapd 0.5.8 <built-in method update of dict object at 0x72a9ccd2a0c0> Application
w1.fi hostapd 0.5.9 <built-in method update of dict object at 0x72a9b0b6b6c0> Application
w1.fi hostapd 0.5.10 <built-in method update of dict object at 0x72a9b0b38a40> Application
w1.fi hostapd 0.5.11 <built-in method update of dict object at 0x72a9ccf9c6c0> Application
w1.fi hostapd 0.6.8 <built-in method update of dict object at 0x72a9ccf9c440> Application
w1.fi hostapd 0.6.9 <built-in method update of dict object at 0x72a9ccf9c780> Application
w1.fi hostapd 0.6.10 <built-in method update of dict object at 0x72a9b0a75300> Application
w1.fi hostapd 0.7.3 <built-in method update of dict object at 0x72a9b0a74640> Application
w1.fi hostapd 1.0 <built-in method update of dict object at 0x72a9b0a771c0> Application
w1.fi hostapd 1.1 <built-in method update of dict object at 0x72a9b0a75440> Application
w1.fi hostapd 2.0 <built-in method update of dict object at 0x72a9b0a75d00> Application
w1.fi hostapd 2.1 <built-in method update of dict object at 0x72a9b0a77a40> Application
w1.fi hostapd 2.2 <built-in method update of dict object at 0x72a9b0a74700> Application
w1.fi hostapd 2.3 <built-in method update of dict object at 0x72a9b0a75280> Application
w1.fi hostapd 2.4 <built-in method update of dict object at 0x72a9b0a74380> Application
w1.fi hostapd 2.5 <built-in method update of dict object at 0x72a9b0a76900> Application
w1.fi hostapd 2.6 <built-in method update of dict object at 0x72a9b0a77300> Application
w1.fi wpa_supplicant 0.2.4 <built-in method update of dict object at 0x72a9b0a76f80> Application
w1.fi wpa_supplicant 0.2.5 <built-in method update of dict object at 0x72a9cc425900> Application
w1.fi wpa_supplicant 0.2.6 <built-in method update of dict object at 0x72a9cc426a00> Application
w1.fi wpa_supplicant 0.2.7 <built-in method update of dict object at 0x72a9cc426c00> Application
w1.fi wpa_supplicant 0.2.8 <built-in method update of dict object at 0x72a9cc426000> Application
w1.fi wpa_supplicant 0.3.7 <built-in method update of dict object at 0x72a9cc426d80> Application
w1.fi wpa_supplicant 0.3.8 <built-in method update of dict object at 0x72a9cc427640> Application
w1.fi wpa_supplicant 0.3.9 <built-in method update of dict object at 0x72a9cc427900> Application
w1.fi wpa_supplicant 0.3.10 <built-in method update of dict object at 0x72a9cc427580> Application
w1.fi wpa_supplicant 0.3.11 <built-in method update of dict object at 0x72a9cc424540> Application
w1.fi wpa_supplicant 0.4.7 <built-in method update of dict object at 0x72a9cc4264c0> Application
w1.fi wpa_supplicant 0.4.8 <built-in method update of dict object at 0x72a9cc426940> Application
w1.fi wpa_supplicant 0.4.9 <built-in method update of dict object at 0x72a9cc426e00> Application
w1.fi wpa_supplicant 0.4.10 <built-in method update of dict object at 0x72a9b0b6a440> Application
w1.fi wpa_supplicant 0.4.11 <built-in method update of dict object at 0x72a9cd085f00> Application
w1.fi wpa_supplicant 0.5.7 <built-in method update of dict object at 0x72a9cd0849c0> Application
w1.fi wpa_supplicant 0.5.8 <built-in method update of dict object at 0x72a9cd087840> Application
w1.fi wpa_supplicant 0.5.9 <built-in method update of dict object at 0x72a9b0b69080> Application
w1.fi wpa_supplicant 0.5.10 <built-in method update of dict object at 0x72a9cd084c00> Application
w1.fi wpa_supplicant 0.5.11 <built-in method update of dict object at 0x72a9cd085ec0> Application
w1.fi wpa_supplicant 0.6.8 <built-in method update of dict object at 0x72a9cd0851c0> Application
w1.fi wpa_supplicant 0.6.9 <built-in method update of dict object at 0x72a9cd085880> Application
w1.fi wpa_supplicant 0.6.10 <built-in method update of dict object at 0x72a9cd086d40> Application
w1.fi wpa_supplicant 0.7.3 <built-in method update of dict object at 0x72a9cd084a80> Application
w1.fi wpa_supplicant 1.0 <built-in method update of dict object at 0x72a9cd085b80> Application
w1.fi wpa_supplicant 1.1 <built-in method update of dict object at 0x72a9cd084500> Application
w1.fi wpa_supplicant 2.0 <built-in method update of dict object at 0x72a9cd085080> Application
w1.fi wpa_supplicant 2.1 <built-in method update of dict object at 0x72a9cd084d00> Application
w1.fi wpa_supplicant 2.2 <built-in method update of dict object at 0x72a9cd087280> Application
w1.fi wpa_supplicant 2.3 <built-in method update of dict object at 0x72a9cd086200> Application
w1.fi wpa_supplicant 2.4 <built-in method update of dict object at 0x72a9cd087a40> Application
w1.fi wpa_supplicant 2.5 <built-in method update of dict object at 0x72a9cd085840> Application
w1.fi wpa_supplicant 2.6 <built-in method update of dict object at 0x72a9cd087040> Application
suse linux_enterprise_desktop 12 <built-in method update of dict object at 0x72a9cc774e80> Operating System
suse linux_enterprise_desktop 12 <built-in method update of dict object at 0x72a9cc776dc0> Operating System
suse linux_enterprise_point_of_sale 11 <built-in method update of dict object at 0x72a9cc774740> Operating System
suse linux_enterprise_server 11 <built-in method update of dict object at 0x72a9cc774400> Operating System
suse linux_enterprise_server 11 <built-in method update of dict object at 0x72a9cc774ac0> Operating System
suse linux_enterprise_server 12 <built-in method update of dict object at 0x72a9cc774980> Operating System
suse openstack_cloud 6 <built-in method update of dict object at 0x72a9cc7775c0> Operating System

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Yes cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
Yes cpe:2.3:o:canonical:ubuntu_linux:17.04:*:*:*:*:*:*:*
Yes cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Yes cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:10:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:10.4:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:11:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:11.1:*:*:*:*:*:*:*
Yes cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*
Yes cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*
Yes cpe:2.3:o:redhat:enterprise_linux_desktop:7:*:*:*:*:*:*:*
Yes cpe:2.3:o:redhat:enterprise_linux_server:7:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:w1.fi:hostapd:0.2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.2.6:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.2.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.6.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.6.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.6.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.7.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:1.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:1.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.6:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.6:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.6.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.6.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.6.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.7.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:1.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:1.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.6:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:suse:linux_enterprise_desktop:12:sp2:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_desktop:12:sp3:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_point_of_sale:11:sp3:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:ltss:*:*
Yes cpe:2.3:o:suse:linux_enterprise_server:11:sp4:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_server:12:*:*:*:ltss:*:*:*
Yes cpe:2.3:o:suse:openstack_cloud:6:*:*:*:*:*:*:*

References

Notification
Message here