CVE-2017-13088

CVE-2017-13088

Vendor Wi-Fi Alliance
Product Wi-Fi Protected Access (WPA and WPA2)
Weakness CWE-323
Published October 17, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows reinstallation of the Integrity Group Temporal Key (IGTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame, allowing an attacker within radio range to replay frames from access points to clients.

Key dates

02Disclosure timeline

October 17, 2017 CVE published
August 5, 2024 Record updated