Description
The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.
CVSS Metrics
- Vector
- CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
- Attack Vector
- adjacent network
- Complexity
- low
- Privileges
- none
- User Action
- required
- Scope
- unchanged
- Confidentiality
- none
- Integrity
- low
- Availability
- none
- Weaknesses
- CWE-327
Metadata
- Primary Vendor
- IEEE
- Published
- 5/11/2021
- Last Modified
- 11/21/2024
- Source
- NIST NVD
- Note: Verify all details with official vendor sources before applying patches.
Affected Products
ieee : ieee_802.11linux : mac80211microsoft : windows_10microsoft : windows_10microsoft : windows_10microsoft : windows_10microsoft : windows_10microsoft : windows_10microsoft : windows_10microsoft : windows_7microsoft : windows_8.1microsoft : windows_rt_8.1microsoft : windows_server_2008microsoft : windows_server_2008microsoft : windows_server_2012microsoft : windows_server_2012microsoft : windows_server_2016microsoft : windows_server_2016microsoft : windows_server_2019debian : debian_linuxsiemens : scalance_w1748-1_firmwaresiemens : scalance_w1750d_firmwaresiemens : scalance_w1788-1_firmwaresiemens : scalance_w1788-2_firmwaresiemens : scalance_w1788-2_firmwaresiemens : scalance_w1788-2ia_firmwaresiemens : scalance_w721-1_firmwaresiemens : scalance_w722-1_firmwaresiemens : scalance_w734-1_firmwaresiemens : scalance_w738-1_firmwaresiemens : scalance_w748-1_firmwaresiemens : scalance_w748-1_firmwaresiemens : scalance_w761-1_firmwaresiemens : scalance_w774-1_firmwaresiemens : scalance_w774-1_firmwaresiemens : scalance_w778-1_firmwaresiemens : scalance_w778-1_firmwaresiemens : scalance_w786-1_firmwaresiemens : scalance_w786-2_firmwaresiemens : scalance_w786-2_firmwaresiemens : scalance_w786-2ia_firmwaresiemens : scalance_w788-1_firmwaresiemens : scalance_w788-1_firmwaresiemens : scalance_w788-2_firmwaresiemens : scalance_w788-2_firmwaresiemens : scalance_w788-2_firmwaresiemens : scalance_wam763-1_firmwaresiemens : scalance_wam766-1_firmwaresiemens : scalance_wam766-1_firmwaresiemens : scalance_wam766-1_6ghz_firmwaresiemens : scalance_wam766-1_6ghz_firmwaresiemens : scalance_wum763-1_firmwaresiemens : scalance_wum766-1_firmwaresiemens : scalance_wum766-1_6ghz_firmwarearista : c-100_firmwarearista : c-110_firmwarearista : c-120_firmwarearista : c-130_firmwarearista : c-200_firmwarearista : c-230_firmwarearista : c-235_firmwarearista : c-250_firmwarearista : c-260_firmwarearista : c-65_firmwarearista : c-75_firmwarearista : o-105_firmwarearista : o-90_firmwarearista : w-118_firmwarearista : w-68_firmwarecisco : 1100_firmwarecisco : 1100-4p_firmwarecisco : 1100-8p_firmwarecisco : 1101-4p_firmwarecisco : 1109-2p_firmwarecisco : 1109-4p_firmwarecisco : aironet_1532_firmwarecisco : aironet_1542d_firmwarecisco : aironet_1542i_firmwarecisco : aironet_1800_firmwarecisco : aironet_1800i_firmwarecisco : aironet_1810_firmwarecisco : aironet_1810w_firmwarecisco : aironet_1815_firmwarecisco : aironet_1815i_firmwarecisco : aironet_1832_firmwarecisco : aironet_1842_firmwarecisco : aironet_1852_firmwarecisco : aironet_ap803_firmwarecisco : aironet_iw3702_firmwarecisco : catalyst_9105_firmwarecisco : catalyst_9105axi_firmwarecisco : catalyst_9105axw_firmwarecisco : catalyst_9115_firmwarecisco : catalyst_9115_ap_firmwarecisco : catalyst_9115axe_firmwarecisco : catalyst_9115axi_firmwarecisco : catalyst_9117_firmwarecisco : catalyst_9117_ap_firmwarecisco : catalyst_9117axi_firmwarecisco : catalyst_9120_firmwarecisco : catalyst_9120_ap_firmwarecisco : catalyst_9120axe_firmwarecisco : catalyst_9120axi_firmwarecisco : catalyst_9120axp_firmwarecisco : catalyst_9124_firmwarecisco : catalyst_9124axd_firmwarecisco : catalyst_9124axi_firmwarecisco : catalyst_9130_firmwarecisco : catalyst_9130_ap_firmwarecisco : catalyst_9130axe_firmwarecisco : catalyst_9130axi_firmwarecisco : ip_phone_6861_firmwarecisco : ip_phone_8821_firmwarecisco : ip_phone_8832_firmwarecisco : ip_phone_8861_firmwarecisco : ip_phone_8865_firmwarecisco : ir829-2lte-ea-ak9_firmwarecisco : ir829-2lte-ea-bk9_firmwarecisco : ir829-2lte-ea-ek9_firmwarecisco : ir829gw-lte-ga-ck9_firmwarecisco : ir829gw-lte-ga-ek9_firmwarecisco : ir829gw-lte-ga-sk9_firmwarecisco : ir829gw-lte-ga-zk9_firmwarecisco : ir829gw-lte-na-ak9_firmwarecisco : ir829gw-lte-vz-ak9_firmwarecisco : meraki_gr10_firmwarecisco : meraki_gr60_firmwarecisco : meraki_mr12_firmwarecisco : meraki_mr20_firmwarecisco : meraki_mr26_firmwarecisco : meraki_mr30h_firmwarecisco : meraki_mr32_firmwarecisco : meraki_mr33_firmwarecisco : meraki_mr34_firmwarecisco : meraki_mr36_firmwarecisco : meraki_mr42_firmwarecisco : meraki_mr42e_firmwarecisco : meraki_mr44_firmwarecisco : meraki_mr45_firmwarecisco : meraki_mr46_firmwarecisco : meraki_mr46e_firmwarecisco : meraki_mr52_firmwarecisco : meraki_mr53_firmwarecisco : meraki_mr53e_firmwarecisco : meraki_mr55_firmwarecisco : meraki_mr56_firmwarecisco : meraki_mr62_firmwarecisco : meraki_mr66_firmwarecisco : meraki_mr70_firmwarecisco : meraki_mr72_firmwarecisco : meraki_mr74_firmwarecisco : meraki_mr76_firmwarecisco : meraki_mr84_firmwarecisco : meraki_mr86_firmwarecisco : meraki_mx64w_firmwarecisco : meraki_mx65w_firmwarecisco : meraki_mx67cw_firmwarecisco : meraki_mx67w_firmwarecisco : meraki_mx68cw_firmwarecisco : meraki_mx68w_firmwarecisco : meraki_z3_firmwarecisco : meraki_z3c_firmwarecisco : webex_board_55_firmwarecisco : webex_board_55s_firmwarecisco : webex_board_70_firmwarecisco : webex_board_70s_firmwarecisco : webex_board_85s_firmwarecisco : webex_dx70_firmwarecisco : webex_dx80_firmwarecisco : webex_room_55_firmwarecisco : webex_room_55_dual_firmwarecisco : webex_room_70_firmwarecisco : webex_room_70_dual_firmwarecisco : webex_room_70_dual_g2_firmwarecisco : webex_room_70_single_firmwarecisco : webex_room_70_single_g2_firmwarecisco : webex_room_kit_firmwarecisco : webex_room_kit_mini_firmwareintel : ac_8260_firmwareintel : ac_8265_firmwareintel : ac_9260_firmwareintel : ac_9560_firmwareintel : killer_ac_1550_firmwareintel : killer_wi-fi_6_ax1650_firmwareintel : killer_wi-fi_6e_ax1675_firmwareintel : proset_ac_3165_firmwareintel : proset_ac_3168_firmwareintel : proset_ac_8260_firmwareintel : proset_ac_8265_firmwareintel : proset_ac_9260_firmwareintel : proset_ac_9461_firmwareintel : proset_ac_9462_firmwareintel : proset_ac_9560_firmwareintel : proset_wi-fi_6_ax200_firmwareintel : proset_wi-fi_6_ax201_firmwareintel : proset_wi-fi_6e_ax210_firmwareintel : proset_wireless_7265_\(rev_d\)_firmwareintel : wi-fi_6_ax200_firmwareintel : wi-fi_6_ax201_firmwarelinux : linux_kernellinux : linux_kernellinux : linux_kernellinux : linux_kernellinux : linux_kernellinux : linux_kernellinux : linux_kernel
AI-Powered Remediation
Generate remediation guidance or a C-suite brief for this vulnerability.