We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2019-18991



Assignermitre
Reserved2019-11-15
Published2020-09-30
Updated2024-08-05

Description

A partial authentication bypass vulnerability exists on Atheros AR9132 3.60(AMX.8), AR9283 1.85, and AR9285 1.0.0.12NA devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected WLAN router where the packet is routed through the network. If successful, a response is sent back as an encrypted frame, which would allow an attacker to discern information or potentially modify data.



MEDIUM: 6.1CVSS:3.0/AC:L/AV:A/A:N/C:L/I:L/PR:N/S:C/UI:N

References

https://www.synopsys.com/blogs/software-security/cyrc-advisory-sept2020/

cve.org CVE-2019-18991

nvd.nist.gov CVE-2019-18991

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2019-18991
Support options

Helpdesk Telegram

Subscribe to our newsletter to learn more about our work.