HomePentest-Tools.com Logo

AVM FRITZ!Box Multiple Wi-Fi Vulnerabilities (FragAttacks) CVE-2020-24586CVE-2020-24588

Severity
CVSSv3 Score
3.5
Vulnerability description

AVM FRITZ!Box devices are prone to multiple Wi-Fi vulnerabilities.

Risk description

The following flaws exist: - CVE-2020-24586: fragment cache attack (not clearing fragments from memory when (re)connecting to a network) - CVE-2020-24588: aggregation attack (accepting non-SPP A-MSDU frames) An adversary that is within radio range of a victim can abuse these vulnerabilities to steal user information or attack devices.

Recommendation

Update to AVM FRITZ!OS 7.27 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
May 11, 2021
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available