CVE-2017-13081

CVE-2017-13081

Vendor Wi-Fi Alliance
Product Wi-Fi Protected Access (WPA and WPA2)
Weakness CWE-323
Published October 17, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the group key handshake, allowing an attacker within radio range to spoof frames from access points to clients.

Key dates

02Disclosure timeline

October 17, 2017 CVE published
August 5, 2024 Record updated