CVE-2017-13079

LOW

Description

Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the four-way handshake, allowing an attacker within radio range to spoof frames from access points to clients.

ID	Name	Product	Family	Severity
124925	EulerOS Virtualization 3.0.1.0 : wpa_supplicant (EulerOS-SA-2019-1422)	Nessus	Huawei Local Security Checks	medium
124917	EulerOS Virtualization for ARM 64 3.0.1.0 : wpa_supplicant (EulerOS-SA-2019-1414)	Nessus	Huawei Local Security Checks	medium
118888	Debian DLA-1573-1 : firmware-nonfree security update (KRACK)	Nessus	Debian Local Security Checks	critical
109037	pfSense < 2.3.5 Multiple Vulnerabilities (KRACK)	Nessus	Firewalls	high
106004	Fedora 27 : 1:wpa_supplicant (2017-f45e844a85) (KRACK)	Nessus	Fedora Local Security Checks	medium
105654	Juniper ScreenOS 6.3 SSG-5 and SSG-20 (KRACK)	Nessus	Firewalls	medium
105653	Junos OS 12.1X46 SRX 210, 240, 650 series firewalls (KRACK)	Nessus	Firewalls	medium
104577	EulerOS 2.0 SP2 : wpa_supplicant (EulerOS-SA-2017-1242)	Nessus	Huawei Local Security Checks	medium
104576	EulerOS 2.0 SP1 : wpa_supplicant (EulerOS-SA-2017-1241)	Nessus	Huawei Local Security Checks	medium
104511	GLSA-201711-03 : hostapd and wpa_supplicant: Key Reinstallation (KRACK) attacks (KRACK)	Nessus	Gentoo Local Security Checks	medium
104299	Debian DLA-1150-1 : wpa security update (KRACK)	Nessus	Debian Local Security Checks	medium
104237	openSUSE Security Update : hostapd (openSUSE-2017-1201) (KRACK)	Nessus	SuSE Local Security Checks	medium
104076	openSUSE Security Update : wpa_supplicant (openSUSE-2017-1163) (KRACK)	Nessus	SuSE Local Security Checks	low
103944	Slackware 14.0 / 14.1 / 14.2 / current : wpa_supplicant (SSA:2017-291-02) (KRACK)	Nessus	Slackware Local Security Checks	medium
103920	SUSE SLES11 Security Update : wpa_supplicant (SUSE-SU-2017:2752-1) (KRACK)	Nessus	SuSE Local Security Checks	low
103917	SUSE SLED12 / SLES12 Security Update : wpa_supplicant (SUSE-SU-2017:2745-1) (KRACK)	Nessus	SuSE Local Security Checks	low
103896	Fedora 26 : 1:wpa_supplicant (2017-60bfb576b7) (KRACK)	Nessus	Fedora Local Security Checks	medium
103884	Fedora 25 : 1:wpa_supplicant (2017-12e76e8364) (KRACK)	Nessus	Fedora Local Security Checks	medium
103875	Ubiquiti Networks UniFi < 3.9.3.7537 (KRACK)	Nessus	Misc.	medium
103873	Fortinet FortiGate < 5.2 / 5.2.x <= 5.2.11 / 5.4.x <= 5.4.5 / 5.6.x <= 5.6.2 Multiple Vulnerabilities (FG-IR-17-196) (KRACK)	Nessus	Firewalls	medium
103863	Ubuntu 14.04 LTS / 16.04 LTS / 17.04 : wpa vulnerabilities (USN-3455-1) (KRACK)	Nessus	Ubuntu Local Security Checks	medium
103862	FreeBSD : WPA packet number reuse with replayed messages and key reinstallation (d670a953-b2a1-11e7-a633-009c02a2ab30) (KRACK)	Nessus	FreeBSD Local Security Checks	medium
103859	Debian DSA-3999-1 : wpa - security update (KRACK)	Nessus	Debian Local Security Checks	medium
103857	MikroTik RouterOS < 6.39.3 / 6.40.4 / 6.41rc (KRACK)	Nessus	Misc.	medium
103856	Cisco ASA FirePOWER Services Multiple Vulnerabilities in Wi-Fi Protected Access and Wi-Fi Protected Access II (KRACK)	Nessus	CISCO	medium
103855	ArubaOS WPA2 Key Reinstallation Vulnerabilities (KRACK)	Nessus	Misc.	medium

CVE-2017-13079

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0