CVE-2020-26145

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 11-05-2021 10:15

Last modified: - 13-05-2022 10:53

Total changes: - 4

Description

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Low

Attack complexity

Adjacent

Attack vector

None

Availability

None

Confidentiality

High

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

6.5

Base score

2.8

3.6

Exploitability score

Impact score

Verification logic

AND

vendor=samsung AND product=galaxy_i9305_firmware AND version=4.4.4

vendor=samsung AND product=galaxy_i9305 AND version=-

AND

vendor=siemens AND product=6gk5763-1al00-7da0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5763-1al00-7da0 AND version=-

AND

vendor=siemens AND product=6gk5766-1ge00-7da0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5766-1ge00-7da0 AND version=-

AND

vendor=siemens AND product=6gk5766-1ge00-7db0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5766-1ge00-7db0 AND version=-

AND

vendor=siemens AND product=6gk5766-1je00-7da0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5766-1je00-7da0 AND version=-

AND

vendor=siemens AND product=6gk5766-1ge00-7ta0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5766-1ge00-7ta0 AND version=-

AND

vendor=siemens AND product=6gk5766-1ge00-7tb0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5766-1ge00-7tb0 AND version=-

AND

vendor=siemens AND product=6gk5766-1je00-7ta0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5766-1je00-7ta0 AND version=-

AND

vendor=siemens AND product=6gk5763-1al00-3aa0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5763-1al00-3aa0 AND version=-

AND

vendor=siemens AND product=6gk5763-1al00-3da0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5763-1al00-3da0 AND version=-

AND

vendor=siemens AND product=6gk5766-1ge00-3da0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5766-1ge00-3da0 AND version=-

AND

vendor=siemens AND product=6gk5766-1ge00-3db0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5766-1ge00-3db0 AND version=-

AND

vendor=siemens AND product=6gk5766-1je00-3da0_firmware AND versionEndExcluding=1.2

vendor=siemens AND product=6gk5766-1je00-3da0 AND version=-

Reference

https://www.fragattacks.com
https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md
[oss-security] 20210511 various 802.11 security issues - fragattacks.com-Mailing List, Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf

Keywords

CVE-2020-26145

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2020-26145

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures