Vulnerability in Arista C-65
CVE-2020-26147
An issue was discovered in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate sele…
EPSS: 0.076 (93.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.4 (Medium). Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N.
Affected products
Public proof-of-concept exploits
References
- cve@mitre.org (x_refsource_CISCO, vendor-advisory, Third Party Advisory)
- cve@mitre.org (Product, x_refsource_MISC)
- cve@mitre.org (Third Party Advisory, x_refsource_MISC)
- cve@mitre.org (mailing-list, x_refsource_MLIST, Patch, Mailing List, Third Party Advisory)
- cve@mitre.org (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
- cve@mitre.org (mailing-list, x_refsource_MLIST, Mailing List, Third Party Advisory)
- cve@mitre.org (x_refsource_CONFIRM, Third Party Advisory)
- cve@mitre.org (Third Party Advisory, x_refsource_MISC)
- 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e
- 0b142b55-0307-4c5a-b3c9-f314f3fb7c5e
Frequently asked questions
- What is CVE-2020-26147?
- CVE-2020-26147 is a medium-severity vulnerability in Arista C-65. CVSS score: 5.4/10. Published 2021-05-11.
- How severe is CVE-2020-26147?
- Medium severity. CVSS v3 base score is 5.4 out of 10.
- Is CVE-2020-26147 known to be exploited?
- 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.