VDB
CVE-2020-26144
CVE-2020-26144
PUBLISHED
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 (i.e., LLC/SNAP) header for EAPOL. An adversary can abuse this to inject arbitrary network packets independent of the network configuration.
EPSS 0.47% · 65.1th percentile
Risk Scores
EPSS Score
0.47%
65.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:20.04:LTS | linux-aws-5.13 | 5.13.0-1023.25~20.04.1, 5.13.0-1022.24~20.04.1, 5.13.0-1021.23~20.04.2 |
| Ubuntu:18.04:LTS | linux-aws-5.3 | 5.3.0-1017.18~18.04.1, 5.3.0-1016.17~18.04.1, 5.3.0-1035.37 |
| Ubuntu:20.04:LTS | linux-azure-5.8 | 5.8.0-1041.44~20.04.1, 5.8.0-1040.43~20.04.1, 5.8.0-1033.35~20.04.1 |
| Ubuntu:Pro:FIPS:18.04:LTS | linux-fips | 4.15.0-1011.12, 0 |
| Ubuntu:Pro:FIPS-updates:20.04:LTS | linux-azure-fips | 5.4.0-1113.119+fips1, 5.4.0-1112.118+fips1, 5.4.0-1111.117+fips1 |
| Ubuntu:Pro:20.04:LTS | linux-kvm | 5.4.0-1006.6, 5.4.0-1004.4, 5.3.0-1009.10 |
| Ubuntu:Pro:18.04:LTS | linux-oracle-5.4 | 5.4.0-1019.19~18.04.1, 5.4.0-1024.24~18.04.1, 5.4.0-1025.25~18.04.1 |
| Ubuntu:18.04:LTS | linux-hwe | 5.0.0-35.38~18.04.1, 5.0.0-32.34~18.04.2, 5.0.0-31.33~18.04.1 |
| Ubuntu:22.04:LTS | linux-riscv | 5.15.0-1020.23, 0, 5.13.0-1004.4 |
| Ubuntu:Pro:18.04:LTS | linux-oracle | 4.15.0-1128.139, 4.15.0-1144.155, 4.15.0-1145.156 |
| Ubuntu:20.04:LTS | linux-azure-5.13 | 5.13.0-1031.37~20.04.1, 5.13.0-1029.34~20.04.1, 5.13.0-1028.33~20.04.1 |
| Ubuntu:24.04:LTS | linux-raspi-realtime | 6.8.0-2019.20, 0 |
| Ubuntu:22.04:LTS | linux-intel-iot-realtime | 5.15.0-1073.75, 0 |
| Ubuntu:Pro:20.04:LTS | linux-xilinx-zynqmp | 5.4.0-1043.47, 5.4.0-1037.41, 5.4.0-1044.48 |
| Ubuntu:Pro:18.04:LTS | linux-aws | 4.15.0-1172.185, 4.15.0-1126.135, 4.15.0-1164.177 |
| Ubuntu:20.04:LTS | linux-oracle-5.13 | 5.13.0-1036.43~20.04.1, 5.13.0-1034.40~20.04.1, 5.13.0-1033.39~20.04.1 |
| Ubuntu:Pro:18.04:LTS | linux-raspi-5.4 | 5.4.0-1021.24~18.04.1, 0, 5.4.0-1013.13~18.04.1 |
| Ubuntu:Pro:18.04:LTS | linux-gcp-5.4 | *, *, * |
| Ubuntu:20.04:LTS | linux-azure-fde | *, *, * |
| Ubuntu:Pro:FIPS-updates:18.04:LTS | linux-azure-fips | 4.15.0-2102.108, 4.15.0-2070.76, 4.15.0-2041.45 |
…and 80 more
Exploit Intelligence
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
- CVE-2017-1000367 (github-poc)
- CVE-2017-1000367 (github-poc)
…and 34 more exploits
Timeline
- CVE Published
- May 12, 2021 EPSS Score
- Jul 23, 2021 PoC Published
- Sep 15, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Jan 16, 2022 EPSS Score
- Mar 19, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 21, 2022 EPSS Score
- Jan 23, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 26, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2020-26144 third-party-advisory
- https://papers.mathyvanhoef.com/usenix2021.pdf third-party-advisory
- https://lore.kernel.org/linux-wireless/20210511180259.159598-1-johannes@sipsolutions.net/ third-party-advisory
- https://lore.kernel.org/all/20210513070303.20253-1-nbd@nbd.name/ third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2020-26144 third-party-advisory