CVE-2020-26146

Published May 11, 2021
Last updated 3 years ago
CVSS medium 5.3
Overview

Description: An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfiltrate selected fragments. This vulnerability is exploitable when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used. Note that WEP is vulnerable to this attack by design.
Source: cve@mitre.org
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 5.3
Impact score: 3.6
Exploitability score: 1.6
Vector string: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Severity: MEDIUM
CVSS 2.0

Type: Primary
Base score: 2.9
Impact score: 2.9
Exploitability score: 5.5
Vector string: AV:A/AC:M/Au:N/C:N/I:P/A:N
Weaknesses

nvd@nist.gov: CWE-20
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:samsung:galaxy_i9305_firmware:4.4.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5CFC281-DDBA-4511-A271-FCFFA337E2B9"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:samsung:galaxy_i9305:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "79194A52-BFFC-448B-9032-F29D2A5971BE"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-250_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B22D5837-A2CC-41AB-8252-1724345AEDC5",
            "versionEndExcluding": "10.0.1-31"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-250:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EE97F0AD-8658-476A-8E22-DA67A5FD9F73"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-260_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4180BE58-3CA0-4FFD-B5BE-44E36FDE5F89",
            "versionEndExcluding": "10.0.1-31"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-260:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A006A8BD-D56E-40C2-ADD2-C11759153808"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-230_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "59BE4F3A-477A-4DE9-B293-F2AF2CCED9A3",
            "versionEndExcluding": "10.0.1-31"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-230:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "29B18F4E-4968-493A-BC90-5D8D7F619F39"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-235_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96A0A5F0-B046-4B53-92BC-D21705B1597C",
            "versionEndExcluding": "10.0.1-31"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-235:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "54878C0D-8842-490F-B556-76AF47A65891"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-200_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C62FEC63-9790-44DF-8AA0-050E89E883B1",
            "versionEndExcluding": "11.0.0-36"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8F81C550-CE6F-4E68-A088-5EC0CEF40600"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-120_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DBABE602-480F-417B-8B5F-15312267FDF1",
            "versionEndExcluding": "11.0.0-36"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-120:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AE3EC767-2ECA-44E4-AA03-9E2673A2B2F3"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-130_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FDF09C24-4E64-4365-994A-52001D3534B1",
            "versionEndExcluding": "11.0.0-36"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-130:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "81C15C55-207E-4030-AC2A-B2E3791D92B0"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-100_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42002393-9A4C-4409-9327-896F94FC1D75",
            "versionEndExcluding": "11.0.0-36"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "132AD177-3F7F-4CD7-9BD5-EE5A24CE671C"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-110_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FDB30A2A-BF19-4D82-A773-AFD64F2B2070",
            "versionEndExcluding": "11.0.0-36"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-110:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C4E82587-A7A1-4057-896A-F30B9DF7C831"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:o-105_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FED1F85B-60E5-45C7-846B-956D91ECC0A6",
            "versionEndExcluding": "11.0.0-36"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:o-105:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7A31FF47-55EE-451B-ABDD-CE82E8EFBC98"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:w-118_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2658DB5-4E35-4F53-A278-CFA6DD3E683F",
            "versionEndExcluding": "11.0.0-36"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:w-118:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5BEE861E-2604-42BD-ABAA-DA729F4EBDBC"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-75_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AD2A3CCF-E8B5-4E7F-BCE7-DB70E8E72B4B"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-75:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8EE26D5A-486B-48F3-9C1C-4EE3FD8F0234"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:o-90_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B9860B5-6CC7-4F29-9514-A469AF6B28F1"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:o-90:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "41F9E4B2-63FC-4F53-9C12-7478B7B6AD48"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:c-65_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C890ABE-5D64-4D7F-A67B-BC026649E0B3"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:c-65:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6B617EA3-E69E-43CA-99D4-86A408C55C90"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arista:w-68_firmware:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C1EF830-C210-48DB-A3F8-FC706AC5F3C7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arista:w-68:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "9F03BB48-C89A-41F6-99DE-12FF95DCD9F2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:siemens:scalance_w700_ieee_802.11n_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F05D6764-79B4-4787-B2D2-E685910453C3"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:siemens:scalance_w700_ieee_802.11n:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "880644DA-9280-4498-AD72-5CBD59CC8142"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:siemens:scalance_w1700_ieee_802.11ac_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "180881A1-AA78-411E-B508-D4C0D7084E28"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:siemens:scalance_w1700_ieee_802.11ac:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "55CA7B83-9295-451A-9B78-832761A6BA79"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B4603220-61F1-4686-B55D-F9F5D27F324A",
            "versionEndExcluding": "8.7.1.3"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "FBC30055-239F-4BB1-B2D1-E5E35F0D8911"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]
Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References
