{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2020-24587","assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","dateUpdated":"2024-08-04T15:19:08.605Z","dateReserved":"2020-08-21T00:00:00.000Z","datePublished":"2021-05-11T00:00:00.000Z"},"containers":{"cna":{"providerMetadata":{"orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre","dateUpdated":"2023-04-01T00:00:00.000Z"},"descriptions":[{"lang":"en","value":"The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed."}],"affected":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}],"references":[{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00473.html"},{"name":"20210511 Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification Affecting Cisco Products: May 2021","tags":["vendor-advisory"],"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu"},{"url":"https://www.fragattacks.com"},{"url":"https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md"},{"name":"[oss-security] 20210511 various 802.11 security issues - fragattacks.com","tags":["mailing-list"],"url":"http://www.openwall.com/lists/oss-security/2021/05/11/12"},{"name":"[debian-lts-announce] 20210623 [SECURITY] [DLA 2689-1] linux security update","tags":["mailing-list"],"url":"https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html"},{"name":"[debian-lts-announce] 20210623 [SECURITY] [DLA 2690-1] linux-4.19 security update","tags":["mailing-list"],"url":"https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html"},{"url":"https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63"},{"name":"[debian-lts-announce] 20230401 [SECURITY] [DLA 3380-1] firmware-nonfree LTS new upstream version (security updates and newer firmware for Linux 5.10)","tags":["mailing-list"],"url":"https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html"}],"problemTypes":[{"descriptions":[{"type":"text","lang":"en","description":"n/a"}]}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T15:19:08.605Z"},"title":"CVE Program Container","references":[{"url":"https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00473.html","tags":["x_transferred"]},{"name":"20210511 Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification Affecting Cisco Products: May 2021","tags":["vendor-advisory","x_transferred"],"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wifi-faf-22epcEWu"},{"url":"https://www.fragattacks.com","tags":["x_transferred"]},{"url":"https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md","tags":["x_transferred"]},{"name":"[oss-security] 20210511 various 802.11 security issues - fragattacks.com","tags":["mailing-list","x_transferred"],"url":"http://www.openwall.com/lists/oss-security/2021/05/11/12"},{"name":"[debian-lts-announce] 20210623 [SECURITY] [DLA 2689-1] linux security update","tags":["mailing-list","x_transferred"],"url":"https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html"},{"name":"[debian-lts-announce] 20210623 [SECURITY] [DLA 2690-1] linux-4.19 security update","tags":["mailing-list","x_transferred"],"url":"https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html"},{"url":"https://www.arista.com/en/support/advisories-notices/security-advisories/12602-security-advisory-63","tags":["x_transferred"]},{"name":"[debian-lts-announce] 20230401 [SECURITY] [DLA 3380-1] firmware-nonfree LTS new upstream version (security updates and newer firmware for Linux 5.10)","tags":["mailing-list","x_transferred"],"url":"https://lists.debian.org/debian-lts-announce/2023/04/msg00002.html"}]}]}}