VDB

CVE-2019-9498

CVE-2019-9498 PUBLISHED

The implementations of EAP-PWD in hostapd EAP Server, when built against a crypto library missing explicit validation on imported elements, do not validate the scalar and element values in EAP-pwd-Commit. An attacker may be able to use invalid scalar/element values to complete authentication, gaining session key and network access without needing or learning the password. Both hostapd with SAE support and wpa_supplicant with SAE support prior to and including version 2.4 are affected. Both hostapd with EAP-pwd support and wpa_supplicant with EAP-pwd support prior to and including version 2.7 are affected.

EPSS 0.79% · 74.3th percentile

Risk Scores

EPSS Score
0.79%
74.3th percentile

Affected Products

VendorProductVersions
Ubuntu:16.04:LTSwpa0, 2.4-0ubuntu5, 2.4-0ubuntu6
Ubuntu:14.04:LTSwpa0, 2.1-0ubuntu1.1, 2.1-0ubuntu1.2
Ubuntu:18.04:LTSwpa2:2.4-1.1ubuntu1, 2:2.6-15ubuntu1, 2:2.6-15ubuntu2

Exploit Intelligence

…and 2 more exploits

Timeline

  • CVE Published
  • May 5, 2020 PoC Published
  • Apr 14, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Dec 17, 2024 EPSS Score
  • Mar 29, 2025 EPSS Score
  • Mar 30, 2025 EPSS Score
  • Apr 2, 2025 EPSS Score
  • Apr 3, 2025 EPSS Score
  • Apr 5, 2025 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›