Authentication mechanism absence or evasion - WiFi
Description
Te system has one old authentication mechanism that can be bypassed and be vulnerable to an intrusion. An attacker can gain access to the network and see communication traffic, whether encrypted or not.
Impact
Set a fragil encryption technique in authentication become a target for exploitation.
Recommendation
- Select the most secure authentication method that is supported by your wireless network clients. - Set up strong encryption algorithms in order to enforce authentication protocol.
Threat
Unauthenticated internal attacker.
Expected Remediation Time
⏱️ 120 minutes.
Requirements
227 - Display access notification228 - Authenticate using standard protocols229 - Request access credentials231 - Implement a biometric verification component235 - Define credential interface264 - Request authentication319 - Make authentication options equally secureFixes
Score
Default score using CVSS 4.0. It may change depending on the context of the src.
Base 4.0
Attack vector
N
Attack complexity
L
Attack requirements
N
Privileges required
N
User interaction
N
Confidentiality (VC)
L
Integrity (VI)
L
Availability (VA)
N
Confidentiality (SC)
N
Integrity (SI)
N
Availability (SA)
N
Threat 4.0
Exploit maturity
X
Vector string
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N