ALPINE-CVE-2017-13081

ALPINE-CVE-2017-13081 PUBLISHED CVSS 5.300000190734863 MEDIUM

Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during the group key handshake, allowing an attacker within radio range to spoof frames from access points to clients.

Risk Scores

CVSS v3.0

5.300000190734863

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected Products

Vendor	Product	Versions
Alpine:v3.5	hostapd	1.0-r0, 0.7.3-r0, 0.6.9-r1
Alpine:v3.23	wpa_supplicant	2.6-r2, 2.6-r1, 2.4-r8
Alpine:v3.10	wpa_supplicant	0.7.1-r1, 0.5.11-r0, 0.6.10-r0
Alpine:v3.15	hostapd	2.5-r0, 2.1-r0, 2.0-r1
Alpine:v3.6	hostapd	2.5-r0, 0.6.10-r0, 0.6.10-r1
Alpine:v3.22	wpa_supplicant	2.5-r1, 2.6-r6, 2.6-r5
Alpine:v3.14	wpa_supplicant	2.4-r5, 2.4-r6, 2.6-r6
Alpine:v3.12	wpa_supplicant	2.6-r6, 2.6-r5, 2.6-r4
Alpine:v3.10	hostapd	0, 2.6-r1, 2.6-r0
Alpine:v3.11	hostapd	0, 1.1-r0, 2.0-r1
Alpine:v3.18	wpa_supplicant	1.0-r1, 0.6.10-r0, 2.0-r2
Alpine:v3.16	hostapd	2.5-r2, 0.7.3-r0, 1.0-r0
Alpine:v3.16	wpa_supplicant	2.4-r4, 2.4-r7, 2.4-r8
Alpine:v3.7	hostapd	2.3-r0, 2.6-r1, 2.6-r0
Alpine:v3.20	wpa_supplicant	2.6-r0, 0, 0.6.9-r0
Alpine:v3.6	wpa_supplicant	2.5-r3, 2.5-r2, 2.5-r1
Alpine:v3.9	hostapd	2.0-r1, 2.3-r0, 0.7.3-r2
Alpine:v3.22	hostapd	2.3-r0, 2.1-r0, 2.6-r1
Alpine:v3.20	hostapd	2.6-r1, 0, 0.6.10-r0
Alpine:v3.8	wpa_supplicant	2.0-r0, 0, 0.5.11-r0

…and 18 more

Timeline

Oct 17, 2017 CVE Published
Dec 3, 2025 CVE Updated
Apr 30, 2026 Distribution Patch

References

https://security.alpinelinux.org/vuln/CVE-2017-13081 advisory

Open in Interactive Console →