Side Channel Vulnerability in Hostapd and WPA Supplicant
CVE-2022-23303

9.8CRITICAL

Key Information:

Vendor: W1.fi
Status: Hostapd; WPa Supplicant
Vendor: CVE Published:; 17 January 2022

Badges

👾 Exploit Exists

What is CVE-2022-23303?

The implementations of SAE (Simultaneous Authentication of Equals) in Hostapd prior to version 2.10 and WPA Supplicant prior to version 2.10 are susceptible to side channel attacks. This vulnerability is attributed to predictable cache access patterns, potentially allowing attackers to gain sensitive information. The issue persists due to an incomplete mitigation for a previous vulnerability identified in 2019. It is crucial for users to upgrade to the latest versions to safeguard against these risks.

References

https://w1.fi/security/2022-1/

https://lists.fedoraproject.org/archives/list/package-ann...

vendor-advisory

https://security.gentoo.org/glsa/202309-16

vendor-advisory

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jan 30, 2023
👾
Exploit known to exist
Jan 30, 2023
Vulnerability published
Jan 17, 2022
Vulnerability Reserved
Jan 17, 2022

CVE-2022-23303 Data

JSON

W1.fi

Badges

What is CVE-2022-23303?

References

CVSS V3.1

Timeline