Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-26145

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration.

Published

2021-05-11T20:15:08.873

Last Modified

2024-11-21T05:19:21.910

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

CVSSv2 Vector

AV:A/AC:L/Au:N/C:N/I:P/A:N

Access Vector: ADJACENT_NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

6.5

Impact Score

2.9

Weaknesses

Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	samsung	galaxy_i9305_firmware	4.4.4	Yes
Hardware	samsung	galaxy_i9305	-	No
Operating System	siemens	6gk5763-1al00-7da0_firmware	< 1.2	Yes
Hardware	siemens	6gk5763-1al00-7da0	-	No
Operating System	siemens	6gk5766-1ge00-7da0_firmware	< 1.2	Yes
Hardware	siemens	6gk5766-1ge00-7da0	-	No
Operating System	siemens	6gk5766-1ge00-7db0_firmware	< 1.2	Yes
Hardware	siemens	6gk5766-1ge00-7db0	-	No
Operating System	siemens	6gk5766-1je00-7da0_firmware	< 1.2	Yes
Hardware	siemens	6gk5766-1je00-7da0	-	No
Operating System	siemens	6gk5766-1ge00-7ta0_firmware	< 1.2	Yes
Hardware	siemens	6gk5766-1ge00-7ta0	-	No
Operating System	siemens	6gk5766-1ge00-7tb0_firmware	< 1.2	Yes
Hardware	siemens	6gk5766-1ge00-7tb0	-	No
Operating System	siemens	6gk5766-1je00-7ta0_firmware	< 1.2	Yes
Hardware	siemens	6gk5766-1je00-7ta0	-	No
Operating System	siemens	6gk5763-1al00-3aa0_firmware	< 1.2	Yes
Hardware	siemens	6gk5763-1al00-3aa0	-	No
Operating System	siemens	6gk5763-1al00-3da0_firmware	< 1.2	Yes
Hardware	siemens	6gk5763-1al00-3da0	-	No
Operating System	siemens	6gk5766-1ge00-3da0_firmware	< 1.2	Yes
Hardware	siemens	6gk5766-1ge00-3da0	-	No
Operating System	siemens	6gk5766-1ge00-3db0_firmware	< 1.2	Yes
Hardware	siemens	6gk5766-1ge00-3db0	-	No
Operating System	siemens	6gk5766-1je00-3da0_firmware	< 1.2	Yes
Hardware	siemens	6gk5766-1je00-3da0	-	No

References

http://www.openwall.com/lists/oss-security/2021/05/11/12 Mailing List, Third Party Advisory ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf Patch, Third Party Advisory ([email protected])
https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md Third Party Advisory ([email protected])
https://www.fragattacks.com Third Party Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2021/05/11/12 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.fragattacks.com Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)