Description
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11r allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the fast BSS transmission (FT) handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
CVSS Metrics
- Vector
- CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
- Attack Vector
- adjacent network
- Complexity
- low
- Privileges
- none
- User Action
- none
- Scope
- unchanged
- Confidentiality
- high
- Integrity
- high
- Availability
- none
- Weaknesses
- CWE-323CWE-330
Metadata
- Primary Vendor
- CANONICAL
- Published
- 10/17/2017
- Last Modified
- 4/20/2025
- Source
- NIST NVD
- Note: Verify all details with official vendor sources before applying patches.
Affected Products
canonical : ubuntu_linuxcanonical : ubuntu_linuxcanonical : ubuntu_linuxdebian : debian_linuxdebian : debian_linuxfreebsd : freebsdfreebsd : freebsdfreebsd : freebsdfreebsd : freebsdfreebsd : freebsdopensuse : leapopensuse : leapredhat : enterprise_linux_desktopredhat : enterprise_linux_serverw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : hostapdw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantw1.fi : wpa_supplicantsuse : linux_enterprise_desktopsuse : linux_enterprise_desktopsuse : linux_enterprise_point_of_salesuse : linux_enterprise_serversuse : linux_enterprise_serversuse : linux_enterprise_serversuse : openstack_cloud
AI-Powered Remediation
Generate remediation guidance or a C-suite brief for this vulnerability.