CVE-2017-13079

CVE-2017-13079

Vendor Wi-Fi Alliance
Product Wi-Fi Protected Access (WPA and WPA2)
Weakness CWE-323
Published October 17, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the four-way handshake, allowing an attacker within radio range to spoof frames from access points to clients.

Key dates

02Disclosure timeline

October 17, 2017 CVE published
August 5, 2024 Record updated