Wi-Fi Security Flaw in Multiple Products by Various Vendors
CVE-2020-24588
3.5LOW
What is CVE-2020-24588?
The vulnerability arises from the 802.11 standard governing Wi-Fi security protocols, specifically relating to the lack of authentication for the A-MSDU flag in the plaintext QoS header field. This oversight may leave devices open to exploitation by adversaries capable of sending non-SSP A-MSDU frames, which are a requirement for 802.11n compliance. As a result, attackers can inject arbitrary network packets into communications, compromising network integrity and potentially leading to unauthorized access or data interception.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
References
CVSS V3.1
Score:
3.5
Severity:
LOW
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved