1. Home
  2. Vulnerabilities
  3. CVE-2020-26147

CVE-2020-26147

CVSS v3.1 5.4 (Medium)
54% Progress
CVSS v2.0 3.2 (Low)
32% Progress
EPSS 0.17 % (54th)
0.17% Progress
Affected Products 14
Advisories 39
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

An issue was discovered in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used.

Weaknesses
CWE-NVD-Other
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2021-05-11 20:15:08
(3 years ago)
Updated Date
2022-07-12 17:14:47
(2 years ago)

Affected Products

Arista

Debian

Linux

Siemens

Configuration #1

AND
    CPE23 From Up To
OR  
  Linux Kernel from 4.4 version and prior 4.4.271 version cpe:2.3:o:linux:linux_kernel >= 4.4 < 4.4.271
OR  
  Running on/with
  Linux Kernel from 4.9 version and prior 4.9.271 version cpe:2.3:o:linux:linux_kernel >= 4.9 < 4.9.271
OR  
  Running on/with
  Linux Kernel from 4.14 version and prior 4.14.235 version cpe:2.3:o:linux:linux_kernel >= 4.14 < 4.14.235
OR  
  Running on/with
  Linux Kernel from 4.19 version and prior 4.19.193 version cpe:2.3:o:linux:linux_kernel >= 4.19 < 4.19.193
OR  
  Running on/with
  Linux Kernel from 5.4 version and prior 5.4.124 version cpe:2.3:o:linux:linux_kernel >= 5.4 < 5.4.124
OR  
  Running on/with
  Linux Kernel from 5.10 version and prior 5.10.42 version cpe:2.3:o:linux:linux_kernel >= 5.10 < 5.10.42
OR  
  Running on/with
  Linux Kernel from 5.12 version and prior 5.12.9 version cpe:2.3:o:linux:linux_kernel >= 5.12 < 5.12.9

Configuration #2

AND
    CPE23 From Up To
OR  
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0

Configuration #3

AND
    CPE23 From Up To
OR  
  Arista C-75 Firmware cpe:2.3:o:arista:c-75_firmware:-
OR  
  Running on/with
  Arista C-75 cpe:2.3:h:arista:c-75:-

Configuration #4

AND
    CPE23 From Up To
OR  
  Arista O-90 Firmware cpe:2.3:o:arista:o-90_firmware:-
OR  
  Running on/with
  Arista O-90 cpe:2.3:h:arista:o-90:-

Configuration #5

AND
    CPE23 From Up To
OR  
  Arista C-65 Firmware cpe:2.3:o:arista:c-65_firmware:-
OR  
  Running on/with
  Arista C-65 cpe:2.3:h:arista:c-65:-

Configuration #6

AND
    CPE23 From Up To
OR  
  Arista W-68 Firmware cpe:2.3:o:arista:w-68_firmware:-
OR  
  Running on/with
  Arista W-68 cpe:2.3:h:arista:w-68:-

Configuration #7

AND
    CPE23 From Up To
OR  
  Siemens Scalance W700 Ieee 802.11n Firmware cpe:2.3:o:siemens:scalance_w700_ieee_802.11n_firmware
OR  
  Running on/with
  Siemens Scalance W700 Ieee 802.11n cpe:2.3:h:siemens:scalance_w700_ieee_802.11n:-

Configuration #8

AND
    CPE23 From Up To
OR  
  Siemens Scalance W1700 Ieee 802.11ac Firmware cpe:2.3:o:siemens:scalance_w1700_ieee_802.11ac_firmware
OR  
  Running on/with
  Siemens Scalance W1700 Ieee 802.11ac cpe:2.3:h:siemens:scalance_w1700_ieee_802.11ac:-