CVE-2020-26142
Name
CVE-2020-26142
Description
An issue was discovered in the kernel in OpenBSD 6.6. The WEP, WPA, WPA2, and WPA3 implementations treat fragmented frames as full frames. An adversary can abuse this to inject arbitrary network packets, independent of the network configuration.
NVD Severity
medium
Other trackers
CVE
,
NVD
,
CERT
,
CVE Details
,
CIRCL
,
Arch Linux
,
Debian
,
Red Hat
,
Ubuntu
,
Gentoo
,
SUSE (Bugzilla)
,
SUSE (CVE)
,
Mageia
Mailing lists
oss-security
,
full-disclosure
,
bugtraq
Exploits
Exploit DB
,
Metasploit
Forges
GitHub (
code
,
issues
), Aports (
code
,
issues
)
References
Type
URI
MISC
https://www.fragattacks.com
MISC
https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md
MLIST
http://www.openwall.com/lists/oss-security/2021/05/11/12
CISCO
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu
MISC
https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63
Match rules
CPE URI
Source package
Min version
Max version
cpe:2.3:o:openbsd:openbsd:6.6:*:*:*:*:*:*:*
openbsd
== None
== 6.6
Vulnerable and fixed packages
Source package
Branch
Version
Maintainer
Status