CVE-2017-13080

EUVD-2017-4598
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
ADJACENT_NETWORK
HIGH
NONE
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 79%
Affected Products (NVD)
VendorProductVersion
canonicalubuntu_linux
14.04
canonicalubuntu_linux
16.04
canonicalubuntu_linux
17.04
debiandebian_linux
8.0
debiandebian_linux
9.0
freebsdfreebsd
*
freebsdfreebsd
10.4
freebsdfreebsd
11.1
opensuseleap
42.2
opensuseleap
42.3
w1.fihostapd
0.2.4
w1.fihostapd
0.2.5
w1.fihostapd
0.2.6
w1.fihostapd
0.2.8
w1.fihostapd
0.3.7
w1.fihostapd
0.3.9
w1.fihostapd
0.3.10
w1.fihostapd
0.3.11
w1.fihostapd
0.4.7
w1.fihostapd
0.4.8
w1.fihostapd
0.4.9
w1.fihostapd
0.4.10
w1.fihostapd
0.4.11
w1.fihostapd
0.5.7
w1.fihostapd
0.5.8
w1.fihostapd
0.5.9
w1.fihostapd
0.5.10
w1.fihostapd
0.5.11
w1.fihostapd
0.6.8
w1.fihostapd
0.6.9
w1.fihostapd
0.6.10
w1.fihostapd
0.7.3
w1.fihostapd
1.0
w1.fihostapd
1.1
w1.fihostapd
2.0
w1.fihostapd
2.1
w1.fihostapd
2.2
w1.fihostapd
2.3
w1.fihostapd
2.4
w1.fihostapd
2.5
w1.fihostapd
2.6
w1.fiwpa_supplicant
0.2.4
w1.fiwpa_supplicant
0.2.5
w1.fiwpa_supplicant
0.2.6
w1.fiwpa_supplicant
0.2.7
w1.fiwpa_supplicant
0.2.8
w1.fiwpa_supplicant
0.3.7
w1.fiwpa_supplicant
0.3.8
w1.fiwpa_supplicant
0.3.9
w1.fiwpa_supplicant
0.3.10
w1.fiwpa_supplicant
0.3.11
w1.fiwpa_supplicant
0.4.7
w1.fiwpa_supplicant
0.4.8
w1.fiwpa_supplicant
0.4.9
w1.fiwpa_supplicant
0.4.10
w1.fiwpa_supplicant
0.4.11
w1.fiwpa_supplicant
0.5.7
w1.fiwpa_supplicant
0.5.8
w1.fiwpa_supplicant
0.5.9
w1.fiwpa_supplicant
0.5.10
w1.fiwpa_supplicant
0.5.11
w1.fiwpa_supplicant
0.6.8
w1.fiwpa_supplicant
0.6.9
w1.fiwpa_supplicant
0.6.10
w1.fiwpa_supplicant
0.7.3
w1.fiwpa_supplicant
1.0
w1.fiwpa_supplicant
1.1
w1.fiwpa_supplicant
2.0
w1.fiwpa_supplicant
2.1
w1.fiwpa_supplicant
2.2
w1.fiwpa_supplicant
2.3
w1.fiwpa_supplicant
2.4
w1.fiwpa_supplicant
2.5
w1.fiwpa_supplicant
2.6
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
(x64, x86)
KB4042895
1511 (x64, x86)
KB4041689
1607 (x64, x86)
KB4041691
1703 (x64, x86)
KB4041676
Windows 7
Service Pack 1 (x64, x86)
KB4041681
Windows 8.1
(x64, x86)
KB4041693
Windows RT 8.1
All
KB4041693
Windows Server 2008
Service Pack 2 (x64, x86)
KB4042723
Service Pack 2 Server Core (x64, x86)
KB4042723
Windows Server 2008 R2
Service Pack 1 (x64)
KB4041681
Service Pack 1 Server Core (x64)
KB4041681
Windows Server 2012
Server Core
KB4041690
Standard
KB4041690
Windows Server 2012 R2
Server Core
KB4041693
Standard
KB4041693
Windows Server 2016
Server Core
KB4041691
Standard
KB4041691
Debian logo
Debian Releases
Debian Product
Codename
firmware-nonfree
bookworm/non-free-firmware
20230210-5
fixed
bullseye/non-free
20210315-3
fixed
jessie
no-dsa
sid/non-free-firmware
20240909-2
fixed
trixie/non-free-firmware
20240909-2
fixed
linux
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.226-1
fixed
jessie
no-dsa
sid
6.11.6-1
fixed
trixie
6.11.5-1
fixed
wpa
bookworm
2:2.10-12+deb12u2
fixed
bookworm (security)
2:2.10-12+deb12u2
fixed
bullseye
2:2.9.0-21+deb11u2
fixed
bullseye (security)
2:2.9.0-21+deb11u2
fixed
jessie
no-dsa
sid
2:2.10-22
fixed
trixie
2:2.10-22
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux-firmware
artful
Fixed 1.169.1
released
bionic
Fixed 1.170
released
cosmic
Fixed 1.170
released
disco
Fixed 1.170
released
eoan
Fixed 1.170
released
focal
Fixed 1.170
released
groovy
Fixed 1.170
released
hirsute
Fixed 1.170
released
trusty
Fixed 1.127.24
released
xenial
Fixed 1.157.14
released
zesty
Fixed 1.164.2
released
wpa
artful
Fixed 2.4-0ubuntu10
released
bionic
Fixed 2.4-0ubuntu10
released
cosmic
Fixed 2.4-0ubuntu10
released
disco
Fixed 2.4-0ubuntu10
released
eoan
Fixed 2.4-0ubuntu10
released
focal
Fixed 2.4-0ubuntu10
released
groovy
Fixed 2.4-0ubuntu10
released
hirsute
Fixed 2.4-0ubuntu10
released
trusty
Fixed 2.1-0ubuntu1.5
released
xenial
Fixed 2.4-0ubuntu6.2
released
zesty
Fixed 2.4-0ubuntu9.1
released
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00020.html
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00023.html
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00024.html
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007.txt
http://www.debian.org/security/2017/dsa-3999
http://www.kb.cert.org/vuls/id/228519
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
http://www.securityfocus.com/bid/101274
http://www.securitytracker.com/id/1039572
http://www.securitytracker.com/id/1039573
http://www.securitytracker.com/id/1039576
http://www.securitytracker.com/id/1039577
http://www.securitytracker.com/id/1039578
http://www.securitytracker.com/id/1039581
http://www.securitytracker.com/id/1039585
http://www.securitytracker.com/id/1039703
http://www.ubuntu.com/usn/USN-3455-1
https://access.redhat.com/errata/RHSA-2017:2907
https://access.redhat.com/errata/RHSA-2017:2911
https://access.redhat.com/security/vulnerabilities/kracks
https://cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf
https://cert.vde.com/en-us/advisories/vde-2017-003
https://cert.vde.com/en-us/advisories/vde-2017-005
https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html
https://lists.debian.org/debian-lts-announce/2018/11/msg00015.html
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-13080
https://security.FreeBSD.org/advisories/FreeBSD-SA-17:07.wpa.asc
https://security.gentoo.org/glsa/201711-03
https://source.android.com/security/bulletin/2017-11-01
https://support.apple.com/HT208219
https://support.apple.com/HT208220
https://support.apple.com/HT208221
https://support.apple.com/HT208222
https://support.apple.com/HT208325
https://support.apple.com/HT208327
https://support.apple.com/HT208334
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03792en_us
https://support.lenovo.com/us/en/product_security/LEN-17420
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00402.html
https://www.krackattacks.com/
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00020.html
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00023.html
http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00024.html
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007.txt
http://www.debian.org/security/2017/dsa-3999
http://www.kb.cert.org/vuls/id/228519
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
http://www.securityfocus.com/bid/101274
http://www.securitytracker.com/id/1039572
http://www.securitytracker.com/id/1039573
http://www.securitytracker.com/id/1039576
http://www.securitytracker.com/id/1039577
http://www.securitytracker.com/id/1039578
http://www.securitytracker.com/id/1039581
http://www.securitytracker.com/id/1039585
http://www.securitytracker.com/id/1039703
http://www.ubuntu.com/usn/USN-3455-1
https://access.redhat.com/errata/RHSA-2017:2907
https://access.redhat.com/errata/RHSA-2017:2911
https://access.redhat.com/security/vulnerabilities/kracks
https://cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf
https://cert.vde.com/en-us/advisories/vde-2017-003
https://cert.vde.com/en-us/advisories/vde-2017-005
https://lists.debian.org/debian-lts-announce/2017/12/msg00004.html
https://lists.debian.org/debian-lts-announce/2018/11/msg00015.html
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-13080
https://security.FreeBSD.org/advisories/FreeBSD-SA-17:07.wpa.asc
https://security.gentoo.org/glsa/201711-03
https://source.android.com/security/bulletin/2017-11-01
https://support.apple.com/HT208219
https://support.apple.com/HT208220
https://support.apple.com/HT208221
https://support.apple.com/HT208222
https://support.apple.com/HT208325
https://support.apple.com/HT208327
https://support.apple.com/HT208334
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03792en_us
https://support.lenovo.com/us/en/product_security/LEN-17420
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00402.html
https://www.krackattacks.com/