CVE-2017-13082
HIGH8.1EPSS 0.43%Published: 10/17/2017Modified: 12/3/2025
Also known as:ALPINE-CVE-2017-13082DEBIAN-CVE-2017-13082
Description
Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11r allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the fast BSS transmission (FT) handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
Affected packages (3)
- Alpine/hostapdfrom 0, < 2.6-r2
- Alpine/wpa_supplicantfrom 0, < 2.6-r7
- Debian/wpafrom 0, < 2:2.4-1.1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.1 | CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |