CVE-2020-26141 MEDIUM

Published: 2021-05-11 | Last Modified: 2026-04-14 | Status: Modified

Description

An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol.

Additional Descriptions (1)

Se detectó un problema en el controlador ALFA de Windows 10 versión 6.1316.1209 para AWUS036H. La implementación de Wi-Fi no verifica la Comprobación de Integridad del Mensaje (autenticidad) de las tramas TKIP fragmentadas. Un adversario puede abusar de esto para inyectar y posiblemente descifrar paquetes en redes WPA o WPA2 que admitan el protocolo de confidencialidad de datos TKIP

CVSS Metrics

Base Score: 6.5 (MEDIUM)

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Attack Vector	ADJACENT_NETWORK
Attack Complexity	LOW
Privileges Required	NONE
User Interaction	NONE
Scope	UNCHANGED
Confidentiality Impact	NONE
Integrity Impact	HIGH
Availability Impact	NONE

Source: [email protected]

Type: Primary

Exploitability Score: 2.8

Impact Score: 3.6

Base Score: 3.3 (LOW)

AV:A/AC:L/Au:N/C:N/I:P/A:N

Access Vector	ADJACENT_NETWORK
Access Complexity	LOW
Authentication	NONE
Confidentiality Impact	NONE
Integrity Impact	PARTIAL
Availability Impact	NONE

Source: [email protected]

Type: Primary

Exploitability Score: 6.5

Impact Score: 2.9

Weaknesses

Source	Type	Description
[email protected]	Primary	en CWE-354

Affected Products

Vendor	Product	Version	Update	Type
alfa	awus036h_firmware	6.1316.1209	<built-in method update of dict object at 0x72a9b0d7b540>	Operating System
cisco	meraki_gr10_firmware	*	<built-in method update of dict object at 0x72a9b0a6e0c0>	Operating System
cisco	meraki_gr60_firmware	*	<built-in method update of dict object at 0x72a99a767080>	Operating System
cisco	meraki_mr20_firmware	*	<built-in method update of dict object at 0x72a9ccf9ae40>	Operating System
cisco	meraki_mr30h_firmware	*	<built-in method update of dict object at 0x72a9b0d7ae40>	Operating System
cisco	meraki_mr33_firmware	*	<built-in method update of dict object at 0x72a9b0d79000>	Operating System
cisco	meraki_mr36_firmware	*	<built-in method update of dict object at 0x72a9ccedf180>	Operating System
cisco	meraki_mr42_firmware	*	<built-in method update of dict object at 0x72a9ccf9a400>	Operating System
cisco	meraki_mr42e_firmware	*	<built-in method update of dict object at 0x72a9ccef2540>	Operating System
cisco	meraki_mr44_firmware	*	<built-in method update of dict object at 0x72a9cd0bc680>	Operating System
cisco	meraki_mr45_firmware	*	<built-in method update of dict object at 0x72a9ccf9a740>	Operating System
cisco	meraki_mr46_firmware	*	<built-in method update of dict object at 0x72a9ccef0d40>	Operating System
cisco	meraki_mr46e_firmware	*	<built-in method update of dict object at 0x72a9994a8a80>	Operating System
cisco	meraki_mr52_firmware	*	<built-in method update of dict object at 0x72a96331fe00>	Operating System
cisco	meraki_mr53_firmware	*	<built-in method update of dict object at 0x72a99a765980>	Operating System
cisco	meraki_mr53e_firmware	*	<built-in method update of dict object at 0x72a99a767200>	Operating System
cisco	meraki_mr55_firmware	*	<built-in method update of dict object at 0x72a9cc848c00>	Operating System
cisco	meraki_mr56_firmware	*	<built-in method update of dict object at 0x72a96331de00>	Operating System
cisco	meraki_mr70_firmware	*	<built-in method update of dict object at 0x72a9ccf99040>	Operating System
cisco	meraki_mr74_firmware	*	<built-in method update of dict object at 0x72a9cce9e1c0>	Operating System
cisco	meraki_mr76_firmware	*	<built-in method update of dict object at 0x72a9994ab680>	Operating System
cisco	meraki_mr84_firmware	*	<built-in method update of dict object at 0x72a96331c500>	Operating System
cisco	meraki_mr86_firmware	*	<built-in method update of dict object at 0x72a9ccf9a080>	Operating System
cisco	meraki_mr12_firmware	*	<built-in method update of dict object at 0x72a9ccf98dc0>	Operating System
cisco	meraki_mr18_firmware	*	<built-in method update of dict object at 0x72a9afa8abc0>	Operating System
cisco	meraki_mr26_firmware	*	<built-in method update of dict object at 0x72a9cdc91200>	Operating System
cisco	meraki_mr32_firmware	*	<built-in method update of dict object at 0x72a9cdc90840>	Operating System
cisco	meraki_mr34_firmware	*	<built-in method update of dict object at 0x72a9cdc92e40>	Operating System
cisco	meraki_mr62_firmware	*	<built-in method update of dict object at 0x72a9cd092ec0>	Operating System
cisco	meraki_mr66_firmware	*	<built-in method update of dict object at 0x72a9cdc90b40>	Operating System
cisco	meraki_mr72_firmware	*	<built-in method update of dict object at 0x72a9cdc92ac0>	Operating System
cisco	meraki_mx64w_firmware	*	<built-in method update of dict object at 0x72a99be57a00>	Operating System
cisco	meraki_mx65w_firmware	*	<built-in method update of dict object at 0x72a9b0d44d00>	Operating System
cisco	meraki_mx67w_firmware	*	<built-in method update of dict object at 0x72a9e4187b40>	Operating System
cisco	meraki_mx67cw_firmware	*	<built-in method update of dict object at 0x72a9b0d45f00>	Operating System
cisco	meraki_mx68w_firmware	*	<built-in method update of dict object at 0x72a9cd09edc0>	Operating System
cisco	meraki_mx68cw_firmware	*	<built-in method update of dict object at 0x72a9cc84a6c0>	Operating System
cisco	meraki_z3_firmware	*	<built-in method update of dict object at 0x72a9cc89a180>	Operating System
cisco	meraki_z3c_firmware	*	<built-in method update of dict object at 0x72a9cc8989c0>	Operating System
cisco	wireless_ip_phone_8821_firmware	*	<built-in method update of dict object at 0x72a9cc899100>	Operating System
cisco	ip_phone_6861_firmware	*	<built-in method update of dict object at 0x72a9cc899e80>	Operating System
cisco	ip_phone_8861_firmware	*	<built-in method update of dict object at 0x72a9cc898e00>	Operating System
cisco	ip_phone_8861_firmware	*	<built-in method update of dict object at 0x72a9cc89a880>	Operating System
cisco	ip_phone_8865_firmware	*	<built-in method update of dict object at 0x72a9cc89be80>	Operating System
cisco	ip_conference_phone_8832_firmware	*	<built-in method update of dict object at 0x72a9cc8997c0>	Operating System
cisco	webex_room_series_firmware	*	<built-in method update of dict object at 0x72a9cc899d40>	Operating System
cisco	webex_desk_series_firmware	*	<built-in method update of dict object at 0x72a9cc899740>	Operating System
cisco	webex_board_series_firmware	*	<built-in method update of dict object at 0x72a9cc89bec0>	Operating System
cisco	webex_wireless_phone_860_firmware	*	<built-in method update of dict object at 0x72a9cc898f80>	Operating System
cisco	webex_wireless_phone_840_firmware	*	<built-in method update of dict object at 0x72a9cc899980>	Operating System
siemens	6gk5778-1gy00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc89af00>	Operating System
siemens	6gk5778-1gy00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc89a0c0>	Operating System
siemens	6gk5721-1fc00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc899c00>	Operating System
siemens	6gk5721-1fc00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc89a2c0>	Operating System
siemens	6gk5722-1fc00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc898040>	Operating System
siemens	6gk5722-1fc00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc89ad40>	Operating System
siemens	6gk5722-1fc00-0ac0_firmware	-	<built-in method update of dict object at 0x72a9cc899540>	Operating System
siemens	6gk5734-1fx00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc898600>	Operating System
siemens	6gk5734-1fx00-0aa6_firmware	-	<built-in method update of dict object at 0x72a9cc899a00>	Operating System
siemens	6gk5734-1fx00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc89a340>	Operating System
siemens	6gk5734-1fx00-0ab6_firmware	-	<built-in method update of dict object at 0x72a9cc89acc0>	Operating System
siemens	6gk5738-1gy00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc898e80>	Operating System
siemens	6gk5738-1gy00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc89bd80>	Operating System
siemens	6gk5748-1fc00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc89bfc0>	Operating System
siemens	6gk5748-1fc00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc898bc0>	Operating System
siemens	6gk5748-1gd00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc898640>	Operating System
siemens	6gk5748-1gd00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc898880>	Operating System
siemens	6gk5761-1fc00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc898d40>	Operating System
siemens	6gk5761-1fc00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc89aa80>	Operating System
siemens	6gk5774-1fx00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc89ac40>	Operating System
siemens	6gk5774-1fx00-0aa6_firmware	-	<built-in method update of dict object at 0x72a9cc89be00>	Operating System
siemens	6gk5774-1fx00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc89a6c0>	Operating System
siemens	6gk5774-1fx00-0ab6_firmware	-	<built-in method update of dict object at 0x72a9cc89ab40>	Operating System
siemens	6gk5774-1fy00-0ta0_firmware	-	<built-in method update of dict object at 0x72a9cc899dc0>	Operating System
siemens	6gk5774-1fy00-0tb0_firmware	-	<built-in method update of dict object at 0x72a9cc89bb40>	Operating System
siemens	6gk5778-1gy00-0ta0_firmware	-	<built-in method update of dict object at 0x72a9cc898680>	Operating System
siemens	6gk5778-1gy00-0tb0_firmware	-	<built-in method update of dict object at 0x72a9cc89a7c0>	Operating System
siemens	6gk5786-1fc00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc8990c0>	Operating System
siemens	6gk5786-1fc00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc89a440>	Operating System
siemens	6gk5786-2fc00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc89ae00>	Operating System
siemens	6gk5786-2fc00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc89ba80>	Operating System
siemens	6gk5786-2fc00-0ac0_firmware	-	<built-in method update of dict object at 0x72a9cc898f00>	Operating System
siemens	6gk5786-2hc00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc89b3c0>	Operating System
siemens	6gk5786-2hc00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc899140>	Operating System
siemens	6gk5788-1fc00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc89b000>	Operating System
siemens	6gk5788-1fc00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc89b280>	Operating System
siemens	6gk5788-1gd00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc899180>	Operating System
siemens	6gk5788-1gd00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc899780>	Operating System
siemens	6gk5788-2fc00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc899840>	Operating System
siemens	6gk5788-2fc00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc899e00>	Operating System
siemens	6gk5788-2fc00-0ac0_firmware	-	<built-in method update of dict object at 0x72a9cc89bdc0>	Operating System
siemens	6gk5788-2gd00-0aa0_firmware	-	<built-in method update of dict object at 0x72a9cc89bb00>	Operating System
siemens	6gk5788-2gd00-0ab0_firmware	-	<built-in method update of dict object at 0x72a9cc899f80>	Operating System
siemens	6gk5788-2gd00-0ta0_firmware	-	<built-in method update of dict object at 0x72a9cc899800>	Operating System
siemens	6gk5788-2gd00-0tb0_firmware	-	<built-in method update of dict object at 0x72a9cc898a00>	Operating System
siemens	6gk5788-2gd00-0tc0_firmware	-	<built-in method update of dict object at 0x72a9cc89b300>	Operating System

Affected Configurations

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:alfa:awus036h_firmware:6.1316.1209:::::windows_10::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:alfa:awus036h:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_gr10_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_gr10:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_gr60_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_gr60:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr20_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr20:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr30h_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr30h:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr33_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr33:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr36_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr36:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr42_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr42:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr42e_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr42e:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr44_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr44:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr45_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr45:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr46_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr46:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr46e_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr46e:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr52_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr52:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr53_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr53:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr53e_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr53e:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr55_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr55:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr56_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr56:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr70_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr70:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr74_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr74:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr76_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr76:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr84_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr84:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr86_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr86:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr12_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr12:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr18_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr18:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr26_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr26:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr32_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr32:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr34_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr34:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr62_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr62:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr66_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr66:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mr72_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mr72:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mx64w_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mx64w:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mx65w_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mx65w:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mx67w_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mx67w:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mx67cw_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mx67cw:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mx68w_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mx68w:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_mx68cw_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_mx68cw:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_z3_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_z3:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:meraki_z3c_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:meraki_z3c:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:wireless_ip_phone_8821_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:wireless_ip_phone_8821:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:ip_phone_6861_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:ip_phone_6861:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:ip_phone_8861_firmware::::::3pcc::*`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:ip_phone_8861:-:::::3pcc::`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:ip_phone_8861_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:ip_phone_8861:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:ip_phone_8865_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:ip_phone_8865:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:ip_conference_phone_8832_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:ip_conference_phone_8832:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:webex_room_series_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:webex_room_series:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:webex_desk_series_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:webex_desk_series:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:webex_board_series_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:webex_board_series:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:webex_wireless_phone_860_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:webex_wireless_phone_860:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:cisco:webex_wireless_phone_840_firmware::::::::`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:cisco:webex_wireless_phone_840:-:::::::*`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5778-1gy00-0ab0_firmware:-::::::m12:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5778-1gy00-0ab0:-::::::m12:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5778-1gy00-0aa0_firmware:-::::::m12:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5778-1gy00-0aa0:-::::::m12:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5721-1fc00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5721-1fc00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5721-1fc00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5721-1fc00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5722-1fc00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5722-1fc00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5722-1fc00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5722-1fc00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5722-1fc00-0ac0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5722-1fc00-0ac0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5734-1fx00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5734-1fx00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5734-1fx00-0aa6_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5734-1fx00-0aa6:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5734-1fx00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5734-1fx00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5734-1fx00-0ab6_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5734-1fx00-0ab6:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5738-1gy00-0aa0_firmware:-::::::m12:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5738-1gy00-0aa0:-::::::m12:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5738-1gy00-0ab0_firmware:-::::::m12:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5738-1gy00-0ab0:-::::::m12:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5748-1fc00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5748-1fc00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5748-1fc00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5748-1fc00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5748-1gd00-0aa0_firmware:-::::::m12:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5748-1gd00-0aa0:-::::::m12:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5748-1gd00-0ab0_firmware:-::::::m12:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5748-1gd00-0ab0:-::::::m12:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5761-1fc00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5761-1fc00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5761-1fc00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5761-1fc00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5774-1fx00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5774-1fx00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5774-1fx00-0aa6_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5774-1fx00-0aa6:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5774-1fx00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5774-1fx00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5774-1fx00-0ab6_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5774-1fx00-0ab6:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5774-1fy00-0ta0_firmware:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5774-1fy00-0ta0:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5774-1fy00-0tb0_firmware:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5774-1fy00-0tb0:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5778-1gy00-0ta0_firmware:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5778-1gy00-0ta0:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5778-1gy00-0tb0_firmware:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5778-1gy00-0tb0:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5786-1fc00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5786-1fc00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5786-1fc00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5786-1fc00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5786-2fc00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5786-2fc00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5786-2fc00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5786-2fc00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5786-2fc00-0ac0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5786-2fc00-0ac0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5786-2hc00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5786-2hc00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5786-2hc00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5786-2hc00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-1fc00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-1fc00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-1fc00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-1fc00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-1gd00-0aa0_firmware:-::::::m12:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-1gd00-0aa0:-::::::m12:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-1gd00-0ab0_firmware:-::::::m12:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-1gd00-0ab0:-::::::m12:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-2fc00-0aa0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-2fc00-0aa0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-2fc00-0ab0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-2fc00-0ab0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-2fc00-0ac0_firmware:-::::::rj45:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-2fc00-0ac0:-::::::rj45:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-2gd00-0aa0_firmware:-::::::m12:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-2gd00-0aa0:-::::::m12:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-2gd00-0ab0_firmware:-::::::m12:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-2gd00-0ab0:-::::::m12:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-2gd00-0ta0_firmware:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-2gd00-0ta0:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-2gd00-0tb0_firmware:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-2gd00-0tb0:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
Yes	`cpe:2.3:o:siemens:6gk5788-2gd00-0tc0_firmware:-::::::m12_ecc:`

Operator: OR

Vulnerable	CPE
No	`cpe:2.3:h:siemens:6gk5788-2gd00-0tc0:-::::::m12_ecc:`

References

http://www.openwall.com/lists/oss-security/2021/05/11/12
Source: [email protected]

Mailing List Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf
Source: [email protected]

Third Party Advisory
https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md
Source: [email protected]

Third Party Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu
Source: [email protected]

Third Party Advisory
https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63
Source: [email protected]

Third Party Advisory
https://www.fragattacks.com
Source: [email protected]

Third Party Advisory
http://www.openwall.com/lists/oss-security/2021/05/11/12
Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
https://www.fragattacks.com
Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory
https://cert-portal.siemens.com/productcert/html/ssa-019200.html
Source: 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e
https://cert-portal.siemens.com/productcert/html/ssa-913875.html
Source: 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e