{ "schema_version": "1.4.0", "id": "GHSA-fx3c-8pqx-5v4c", "modified": "2025-04-20T03:46:56Z", "published": "2022-05-13T01:43:01Z", "aliases": [ "CVE-2017-13082" ], "details": "Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11r allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the fast BSS transmission (FT) handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N" } ], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-13082" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2017:2907" }, { "type": "WEB", "url": "https://access.redhat.com/security/vulnerabilities/kracks" }, { "type": "WEB", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf" }, { "type": "WEB", "url": "https://cert.vde.com/en-us/advisories/vde-2017-005" }, { "type": "WEB", "url": "https://github.com/vanhoefm/krackattacks-test-ap-ft" }, { "type": "WEB", "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-299-02" }, { "type": "WEB", "url": "https://rockwellautomation.custhelp.com/app/answers/detail/a_id/1066697" }, { "type": "WEB", "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-17:07.wpa.asc" }, { "type": "WEB", "url": "https://security.gentoo.org/glsa/201711-03" }, { "type": "WEB", "url": "https://source.android.com/security/bulletin/2017-11-01" }, { "type": "WEB", "url": "https://support.lenovo.com/us/en/product_security/LEN-17420" }, { "type": "WEB", "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa" }, { "type": "WEB", "url": "https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt" }, { "type": "WEB", "url": "https://www.krackattacks.com" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00021.html" }, { "type": "WEB", "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007.txt" }, { "type": "WEB", "url": "http://www.debian.org/security/2017/dsa-3999" }, { "type": "WEB", "url": "http://www.kb.cert.org/vuls/id/228519" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html" }, { "type": "WEB", "url": "http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/101274" }, { "type": "WEB", "url": "http://www.securitytracker.com/id/1039570" }, { "type": "WEB", "url": "http://www.securitytracker.com/id/1039571" }, { "type": "WEB", "url": "http://www.securitytracker.com/id/1039573" }, { "type": "WEB", "url": "http://www.securitytracker.com/id/1039581" }, { "type": "WEB", "url": "http://www.ubuntu.com/usn/USN-3455-1" } ], "database_specific": { "cwe_ids": [ "CWE-323", "CWE-330" ], "severity": "HIGH", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2017-10-17T13:29:00Z" } }