CVE-2017-13081

Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the group key handshake, allowing an attacker within radio range to spoof frames from access points to clients.

Severity	MEDIUM
CVSS	5.3
CWE	CWE-323
KEV
Published	8 years ago
Modified	6 days ago

Related Products

Product	Advisory
Cisco Small Business 500 Series Wireless Access Point Firmware	cisco-sa-20171016-wpa
Cisco Small Business 300 Series Wireless Access Point Firmware	cisco-sa-20171016-wpa
Cisco Small Business 100 Series Wireless Access Point Firmware	cisco-sa-20171016-wpa
Cisco Secure Client	cisco-sa-20171016-wpa
Cisco IP phone	cisco-sa-20171016-wpa
Cisco IP Phone 8800 Series Software	cisco-sa-20171016-wpa
Cisco FirePOWER Services Software for ASA	cisco-sa-20171016-wpa
Cisco DX Series IP Phones	cisco-sa-20171016-wpa
Cisco AnyConnect Secure Mobility Client	cisco-sa-20171016-wpa
Cisco Aironet Access Point Software	cisco-sa-20171016-wpa
Cisco ASA with FirePOWER Services	cisco-sa-20171016-wpa