Fluid Attacks Database

Description

In hostapd 2.10 and earlier, the PKEX code remains active even after a successful PKEX association. An attacker that successfully bootstrapped public keys with another entity using PKEX in the past, will be able to subvert a future bootstrapping by passively observing public keys, re-using the encrypting element Qi and subtracting it from the captured message M (X = M - Qi). This will result in the public ephemeral key X; the only element required to subvert the PKEX association.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 12	wpa	=2:2.10-12 \|\| =2:2.10-12+deb12u1 \|\| =2:2.10-12+deb12u2 \|\| >=0 <2:2.10-12+deb12u3	2:2.10-12+deb12u3
debian 13	wpa	>=0 <2:2.10-24	2:2.10-24
debian 14	wpa	>=0 <2:2.10-24	2:2.10-24
debian 11	wpa	=2:2.9.0-21 \|\| =2:2.9.0-21+deb11u1 \|\| =2:2.9.0-21+deb11u2 \|\| >=0 <2:2.9.0-21+deb11u3	2:2.9.0-21+deb11u3
rpm rhel8	hostapd	-	-
rpm rhel9	hostapd	-	-

Aliases

1. CVE-2022-376602. NVD-2022-376603. OSV-DEBIAN-2022-376604. OSV-2022-376605. SECURITY-TRACKER-CVE-2022-37660

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.