IM
IronMonkey Threat Research

CVE-2017-13084 MEDIUM

Published: 2017-10-17 | Last Modified: 2026-06-17 | Status: Modified

Description

Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.

Additional Descriptions (1)

Wi-Fi Protected Access (WPA y WPA2) permite la reinstalación de la clave STK (Transient Key) STSL (Station-To-Station-Link) durante la negociación PeerKey, haciendo que un atacante que se sitúe dentro del radio reproduzca, descifre o suplante frames.

CVSS Metrics

Base Score: 5.4 (MEDIUM)

AV:A/AC:M/Au:N/C:P/I:P/A:P

Access VectorADJACENT_NETWORK
Access ComplexityMEDIUM
AuthenticationNONE
Confidentiality ImpactPARTIAL
Integrity ImpactPARTIAL
Availability ImpactPARTIAL

Source: [email protected]

Type: Primary

Exploitability Score: 5.5

Impact Score: 6.4

Weaknesses

Source Type Description
[email protected] Secondary
en CWE-323
[email protected] Primary
en CWE-330

Affected Products

Vendor Product Version Update Type
canonical ubuntu_linux 14.04 <built-in method update of dict object at 0x72a9a3092d40> Operating System
canonical ubuntu_linux 16.04 <built-in method update of dict object at 0x72a9b091a0c0> Operating System
canonical ubuntu_linux 17.04 <built-in method update of dict object at 0x72a9a3093940> Operating System
debian debian_linux 8.0 <built-in method update of dict object at 0x72a9a3091400> Operating System
debian debian_linux 9.0 <built-in method update of dict object at 0x72a9a3092cc0> Operating System
freebsd freebsd * <built-in method update of dict object at 0x72a9a3093180> Operating System
freebsd freebsd 10 <built-in method update of dict object at 0x72a9a3092780> Operating System
freebsd freebsd 10.4 <built-in method update of dict object at 0x72a9a3093e00> Operating System
freebsd freebsd 11 <built-in method update of dict object at 0x72a9a3091280> Operating System
freebsd freebsd 11.1 <built-in method update of dict object at 0x72a9a3092dc0> Operating System
opensuse leap 42.2 <built-in method update of dict object at 0x72a9a3091a00> Operating System
opensuse leap 42.3 <built-in method update of dict object at 0x72a9a3091900> Operating System
redhat enterprise_linux_desktop 7 <built-in method update of dict object at 0x72a9a3093a80> Operating System
redhat enterprise_linux_server 7 <built-in method update of dict object at 0x72a9a3093dc0> Operating System
w1.fi hostapd 0.2.4 <built-in method update of dict object at 0x72a9a3092600> Application
w1.fi hostapd 0.2.5 <built-in method update of dict object at 0x72a9b091bd00> Application
w1.fi hostapd 0.2.6 <built-in method update of dict object at 0x72a9a3090240> Application
w1.fi hostapd 0.2.8 <built-in method update of dict object at 0x72a9a3090cc0> Application
w1.fi hostapd 0.3.7 <built-in method update of dict object at 0x72a9a3092e40> Application
w1.fi hostapd 0.3.9 <built-in method update of dict object at 0x72a9a3091bc0> Application
w1.fi hostapd 0.3.10 <built-in method update of dict object at 0x72a9a3091340> Application
w1.fi hostapd 0.3.11 <built-in method update of dict object at 0x72a9b09180c0> Application
w1.fi hostapd 0.4.7 <built-in method update of dict object at 0x72a9a30910c0> Application
w1.fi hostapd 0.4.8 <built-in method update of dict object at 0x72a9a3093640> Application
w1.fi hostapd 0.4.9 <built-in method update of dict object at 0x72a9a3090340> Application
w1.fi hostapd 0.4.10 <built-in method update of dict object at 0x72a9a3090440> Application
w1.fi hostapd 0.4.11 <built-in method update of dict object at 0x72a9a3091640> Application
w1.fi hostapd 0.5.7 <built-in method update of dict object at 0x72a9a3092fc0> Application
w1.fi hostapd 0.5.8 <built-in method update of dict object at 0x72a9a3092ec0> Application
w1.fi hostapd 0.5.9 <built-in method update of dict object at 0x72a9a3091740> Application
w1.fi hostapd 0.5.10 <built-in method update of dict object at 0x72a9a3092f40> Application
w1.fi hostapd 0.5.11 <built-in method update of dict object at 0x72a9a30904c0> Application
w1.fi hostapd 0.6.8 <built-in method update of dict object at 0x72a9a3092a00> Application
w1.fi hostapd 0.6.9 <built-in method update of dict object at 0x72a9a3093980> Application
w1.fi hostapd 0.6.10 <built-in method update of dict object at 0x72a9b0919f00> Application
w1.fi hostapd 0.7.3 <built-in method update of dict object at 0x72a9b091ac80> Application
w1.fi hostapd 1.0 <built-in method update of dict object at 0x72a9b091a5c0> Application
w1.fi hostapd 1.1 <built-in method update of dict object at 0x72a9b09194c0> Application
w1.fi hostapd 2.0 <built-in method update of dict object at 0x72a9b0918440> Application
w1.fi hostapd 2.1 <built-in method update of dict object at 0x72a9b091bf80> Application
w1.fi hostapd 2.2 <built-in method update of dict object at 0x72a9b0919ec0> Application
w1.fi hostapd 2.3 <built-in method update of dict object at 0x72a9b091b740> Application
w1.fi hostapd 2.4 <built-in method update of dict object at 0x72a9b091be00> Application
w1.fi hostapd 2.5 <built-in method update of dict object at 0x72a9b0919a00> Application
w1.fi hostapd 2.6 <built-in method update of dict object at 0x72a9b0919400> Application
w1.fi wpa_supplicant 0.2.4 <built-in method update of dict object at 0x72a9b091ab40> Application
w1.fi wpa_supplicant 0.2.5 <built-in method update of dict object at 0x72a9b09189c0> Application
w1.fi wpa_supplicant 0.2.6 <built-in method update of dict object at 0x72a9b0918900> Application
w1.fi wpa_supplicant 0.2.7 <built-in method update of dict object at 0x72a9b091bd80> Application
w1.fi wpa_supplicant 0.2.8 <built-in method update of dict object at 0x72a9ccf02e00> Application
w1.fi wpa_supplicant 0.3.7 <built-in method update of dict object at 0x72a9b0919d40> Application
w1.fi wpa_supplicant 0.3.8 <built-in method update of dict object at 0x72a9a3090d80> Application
w1.fi wpa_supplicant 0.3.9 <built-in method update of dict object at 0x72a9a30935c0> Application
w1.fi wpa_supplicant 0.3.10 <built-in method update of dict object at 0x72a9ccf03100> Application
w1.fi wpa_supplicant 0.3.11 <built-in method update of dict object at 0x72a9b0919480> Application
w1.fi wpa_supplicant 0.4.7 <built-in method update of dict object at 0x72a9b091a800> Application
w1.fi wpa_supplicant 0.4.8 <built-in method update of dict object at 0x72a9a3092bc0> Application
w1.fi wpa_supplicant 0.4.9 <built-in method update of dict object at 0x72a9b091a740> Application
w1.fi wpa_supplicant 0.4.10 <built-in method update of dict object at 0x72a9b09198c0> Application
w1.fi wpa_supplicant 0.4.11 <built-in method update of dict object at 0x72a9a3093b00> Application
w1.fi wpa_supplicant 0.5.7 <built-in method update of dict object at 0x72a9b09188c0> Application
w1.fi wpa_supplicant 0.5.8 <built-in method update of dict object at 0x72a9b0918400> Application
w1.fi wpa_supplicant 0.5.9 <built-in method update of dict object at 0x72a9a3090840> Application
w1.fi wpa_supplicant 0.5.10 <built-in method update of dict object at 0x72a9ccf02e40> Application
w1.fi wpa_supplicant 0.5.11 <built-in method update of dict object at 0x72a9ccf010c0> Application
w1.fi wpa_supplicant 0.6.8 <built-in method update of dict object at 0x72a9ccf02140> Application
w1.fi wpa_supplicant 0.6.9 <built-in method update of dict object at 0x72a9ccf01e80> Application
w1.fi wpa_supplicant 0.6.10 <built-in method update of dict object at 0x72a9ccf02500> Application
w1.fi wpa_supplicant 0.7.3 <built-in method update of dict object at 0x72a9ccf00d00> Application
w1.fi wpa_supplicant 1.0 <built-in method update of dict object at 0x72a9ccf01500> Application
w1.fi wpa_supplicant 1.1 <built-in method update of dict object at 0x72a9ccf018c0> Application
w1.fi wpa_supplicant 2.0 <built-in method update of dict object at 0x72a9ccf02d80> Application
w1.fi wpa_supplicant 2.1 <built-in method update of dict object at 0x72a9ccf02000> Application
w1.fi wpa_supplicant 2.2 <built-in method update of dict object at 0x72a9ccf03d00> Application
w1.fi wpa_supplicant 2.3 <built-in method update of dict object at 0x72a9ccf00e00> Application
w1.fi wpa_supplicant 2.4 <built-in method update of dict object at 0x72a9b0b4aec0> Application
w1.fi wpa_supplicant 2.5 <built-in method update of dict object at 0x72a9b0b48980> Application
w1.fi wpa_supplicant 2.6 <built-in method update of dict object at 0x72a9b0b48cc0> Application
suse linux_enterprise_desktop 12 <built-in method update of dict object at 0x72a9cdf01a00> Operating System
suse linux_enterprise_desktop 12 <built-in method update of dict object at 0x72a9cdf02b00> Operating System
suse linux_enterprise_point_of_sale 11 <built-in method update of dict object at 0x72a9cdf035c0> Operating System
suse linux_enterprise_server 11 <built-in method update of dict object at 0x72a9cdf01e00> Operating System
suse linux_enterprise_server 11 <built-in method update of dict object at 0x72a9cdf03740> Operating System
suse linux_enterprise_server 12 <built-in method update of dict object at 0x72a9cdf01540> Operating System
suse openstack_cloud 6 <built-in method update of dict object at 0x72a9cdf02880> Operating System

Affected Configurations

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
Yes cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
Yes cpe:2.3:o:canonical:ubuntu_linux:17.04:*:*:*:*:*:*:*
Yes cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Yes cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:10:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:10.4:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:11:*:*:*:*:*:*:*
Yes cpe:2.3:o:freebsd:freebsd:11.1:*:*:*:*:*:*:*
Yes cpe:2.3:o:opensuse:leap:42.2:*:*:*:*:*:*:*
Yes cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*
Yes cpe:2.3:o:redhat:enterprise_linux_desktop:7:*:*:*:*:*:*:*
Yes cpe:2.3:o:redhat:enterprise_linux_server:7:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:a:w1.fi:hostapd:0.2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.2.6:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.2.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.3.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.4.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.5.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.6.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.6.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.6.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:0.7.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:1.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:1.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:hostapd:2.6:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.6:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.2.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.3.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.4.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.7:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.5.11:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.6.8:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.6.9:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.6.10:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:0.7.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:1.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:1.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.0:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.1:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.2:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.3:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.4:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.5:*:*:*:*:*:*:*
Yes cpe:2.3:a:w1.fi:wpa_supplicant:2.6:*:*:*:*:*:*:*

Operator: OR

Vulnerable CPE
Yes cpe:2.3:o:suse:linux_enterprise_desktop:12:sp2:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_desktop:12:sp3:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_point_of_sale:11:sp3:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_server:11:sp3:*:*:*:ltss:*:*
Yes cpe:2.3:o:suse:linux_enterprise_server:11:sp4:*:*:*:*:*:*
Yes cpe:2.3:o:suse:linux_enterprise_server:12:*:*:*:ltss:*:*:*
Yes cpe:2.3:o:suse:openstack_cloud:6:*:*:*:*:*:*:*

References

Notification
Message here