CVE-2017-13084

CVE-2017-13084

Vendor Wi-Fi Alliance
Product Wi-Fi Protected Access (WPA and WPA2)
Weakness CWE-323
Published October 17, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.

Key dates

02Disclosure timeline

October 17, 2017 CVE published
August 5, 2024 Record updated