Vulnerabilities in IEEE 802.11 implementation were found. These vulnerabilities could allow an attacker to inject malicious frames into legitimate WiFi traffic. The discovered vulnerabilities affect all modern security protocols of WiFi, including the latest WPA3. Successful exploitation of these vulnerabilities can result in the extraction of sensitive data and the manipulation of WiFi traffic. In order for an attacker to exploit these vulnerabilities he needs to be in proximity of the WiFi network and trick a user connected to the WiFi network to visit the attacker’s server.
CVE: CVE-2020-24586, CVE-2020-24587, CVE-2020-24588, CVE-2020-26140, CVE-2020-26143, CVE-2020-26146, CVE-2020-26147
Last updated: Jan. 21, 2022, 7:08 p.m.