CVE-2020-9395 - OpenCVE

An issue was discovered on Realtek RTL8195AM, RTL8711AM, RTL8711AF, and RTL8710AF devices before 2.0.6. A stack-based buffer overflow exists in the client code that takes care of WPA2's 4-way-handshake via a malformed EAPOL-Key packet with a long keydata buffer.

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:A/AC:M/Au:S/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Realtek	Rtl8195am Rtl8195am Firmware Rtl8710af Rtl8710af Firmware Rtl8711af Rtl8711af Firmware Rtl8711am Rtl8711am Firmware

Configuration 1 [-]

AND

cpe:2.3:h:realtek:rtl8711af:-:*:*:*:*:*:*:*

cpe:2.3:o:realtek:rtl8711af_firmware:*:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:h:realtek:rtl8711am:-:*:*:*:*:*:*:*

cpe:2.3:o:realtek:rtl8711am_firmware:*:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:h:realtek:rtl8195am:-:*:*:*:*:*:*:*

cpe:2.3:o:realtek:rtl8195am_firmware:*:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:h:realtek:rtl8710af:-:*:*:*:*:*:*:*

cpe:2.3:o:realtek:rtl8710af_firmware:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/ambiot/amb1_arduino/commit/dcea55cf9775a0166805b3db845b237ecd5e74ea#diff-d06e7a87f34cc464a56799a419033014
https://github.com/ambiot/amb1_sdk/commit/bc5173d5d4faf6829074b0f1e1b242c12b7777a3#diff-700c216fb376666eaeda0c892e8bdc09
https://www.amebaiot.com/en/security_bulletin/

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-07-06T21:09:28

Updated: 2024-08-04T10:26:16.113Z

Reserved: 2020-02-25T00:00:00

Link: CVE-2020-9395

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2020-07-06T22:15:11.553

Modified: 2021-07-21T11:39:23.747

Link: CVE-2020-9395

Redhat

No data.

Metrics

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Adjacent Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Adjacent Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object