17 Avr 2019
Vulnérabilité CVE-2019-9494 CVE Vulnerability
The implementations of SAE in hostapd and wpa_supplicant are vulnerable to side channel attacks as a result of observable timing differences and cache access patterns. An attacker may be able to gain leaked information from a side channel attack that can be used for full password recovery. Both hostapd with SAE support and wpa_supplicant with SAE support prior to and including version 2.7 are affected. (CVSS:4.3) (Last Update:2019-04-17)
Vulnerability Details : The implementations of SAE in hostapd and wpa_supplicant are vulnerable to side channel attacks as a result of observable timing differences and cache access patterns. An attacker may be able to gain leaked information from a side channel attack that can be used for full password recovery. Both hostapd with SAE support and wpa_supplicant with SAE support prior to and including version 2.7 are affected. Publish Date : 2019-04-17 Last Update Date : 2019-04-17 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2019-9494
- Number Of Affected Versions By Product
- References For CVE-2019-9494
| |||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2019-9494There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |