Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2018-0412

Опубликовано: 15 авг. 2018
Источник: nvd
CVSS3: 5.3
CVSS2: 2.9
EPSS Низкий

Описание

A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Series Wireless Access Points could allow an unauthenticated, adjacent attacker to force the downgrade of the encryption algorithm that is used between an authenticator (access point) and a supplicant (Wi-Fi client). The vulnerability is due to the improper processing of certain EAPOL messages that are received during the Wi-Fi handshake process. An attacker could exploit this vulnerability by establishing a man-in-the-middle position between a supplicant and an authenticator and manipulating an EAPOL message exchange to force usage of a WPA-TKIP cipher instead of the more secure AES-CCMP cipher. A successful exploit could allow the attacker to conduct subsequent cryptographic attacks, which could lead to the disclosure of confidential information. Cisco Bug IDs: CSCvj29229.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:cisco:wap121_firmware:*:*:*:*:*:*:*:*
Версия до 1.0.6.6 (включая)
cpe:2.3:h:cisco:wap121:-:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

cpe:2.3:o:cisco:wap125_firmware:*:*:*:*:*:*:*:*
Версия до 1.0.6.6 (включая)
cpe:2.3:h:cisco:wap125:-:*:*:*:*:*:*:*
Конфигурация 3

Одновременно

cpe:2.3:o:cisco:wap131_firmware:*:*:*:*:*:*:*:*
Версия до 1.0.6.6 (включая)
cpe:2.3:h:cisco:wap131:-:*:*:*:*:*:*:*
Конфигурация 4

Одновременно

cpe:2.3:o:cisco:wap150_firmware:*:*:*:*:*:*:*:*
Версия до 1.0.6.6 (включая)
cpe:2.3:h:cisco:wap150:-:*:*:*:*:*:*:*
Конфигурация 5

Одновременно

cpe:2.3:o:cisco:wap321_firmware:*:*:*:*:*:*:*:*
Версия до 1.0.6.6 (включая)
cpe:2.3:h:cisco:wap321:-:*:*:*:*:*:*:*
Конфигурация 6

Одновременно

cpe:2.3:o:cisco:wap351_firmware:*:*:*:*:*:*:*:*
Версия до 1.0.6.6 (включая)
cpe:2.3:h:cisco:wap351:-:*:*:*:*:*:*:*
Конфигурация 7

Одновременно

cpe:2.3:o:cisco:wap361_firmware:*:*:*:*:*:*:*:*
Версия до 1.0.6.6 (включая)
cpe:2.3:h:cisco:wap361:-:*:*:*:*:*:*:*
Конфигурация 8

Одновременно

cpe:2.3:o:cisco:wap371_firmware:*:*:*:*:*:*:*:*
Версия до 1.0.6.6 (включая)
cpe:2.3:h:cisco:wap371:-:*:*:*:*:*:*:*

EPSS

Процентиль: 38%
0.00169
Низкий

5.3 Medium

CVSS3

2.9 Low

CVSS2

Дефекты

CWE-310
NVD-CWE-noinfo

Связанные уязвимости

github логотип

GHSA-c7f3-h262-jxw5

CVSS3: 5.3
github
больше 3 лет назад

A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Series Wireless Access Points could allow an unauthenticated, adjacent attacker to force the downgrade of the encryption algorithm that is used between an authenticator (access point) and a supplicant (Wi-Fi client). The vulnerability is due to the improper processing of certain EAPOL messages that are received during the Wi-Fi handshake process. An attacker could exploit this vulnerability by establishing a man-in-the-middle position between a supplicant and an authenticator and manipulating an EAPOL message exchange to force usage of a WPA-TKIP cipher instead of the more secure AES-CCMP cipher. A successful exploit could allow the attacker to conduct subsequent cryptographic attacks, which could lead to the disclosure of confidential information. Cisco Bug IDs: CSCvj29229.

fstec логотип

BDU:2018-01416

CVSS3: 5.3
fstec
больше 7 лет назад

Уязвимость реализации протокола Extensible Authentication Protocol over LAN (EAPOL) микропрограммного обеспечения маршрутизаторов Cisco серий Small Bussiness 100 Series и Small Bussiness 300 Series, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 38%
0.00169
Низкий

5.3 Medium

CVSS3

2.9 Low

CVSS2

Дефекты

CWE-310
NVD-CWE-noinfo