CVE-2017-13080

Summary

Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients.

Affected Software

VendorProductVersion RangeStatus
Wi-Fi AllianceWi-Fi Protected Access (WPA and WPA2)WPAaffected
Wi-Fi AllianceWi-Fi Protected Access (WPA and WPA2)WPA2affected

Weaknesses

  • CWE-323: CWE-323: Reusing a Nonce, Key Pair in Encryption

ADP Enrichment

CVE Program Container

Additional References

References