CVE-2019-11555

{"id": "CVE-2019-11555", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.2}]}, "published": "2019-04-26T22:29:00.357", "references": [{"url": "http://www.openwall.com/lists/oss-security/2019/04/26/1", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://lists.debian.org/debian-lts-announce/2019/07/msg00030.html", "source": "cve@mitre.org"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5T7G763UECWR7FQXOJVL67PW7C5A3SA4/", "source": "cve@mitre.org"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DJKZHAT5KPUN26JL77EUH563GAH5XZ5C/", "source": "cve@mitre.org"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IQ6P2GI5GSXRNLNIUNPARFZQVDEIGVZD/", "source": "cve@mitre.org"}, {"url": "https://seclists.org/bugtraq/2019/May/40", "source": "cve@mitre.org"}, {"url": "https://seclists.org/bugtraq/2019/May/64", "source": "cve@mitre.org"}, {"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-19:03.wpa.asc", "source": "cve@mitre.org"}, {"url": "https://security.gentoo.org/glsa/201908-25", "source": "cve@mitre.org"}, {"url": "https://usn.ubuntu.com/3969-1/", "source": "cve@mitre.org"}, {"url": "https://usn.ubuntu.com/3969-2/", "source": "cve@mitre.org"}, {"url": "https://w1.fi/security/2019-5/", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://w1.fi/security/2019-5/eap-pwd-message-reassembly-issue-with-unexpected-fragment.txt", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.debian.org/security/2019/dsa-4450", "source": "cve@mitre.org"}, {"url": "https://www.openwall.com/lists/oss-security/2019/04/18/6", "tags": ["Mailing List", "Patch", "Third Party Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-476"}]}], "descriptions": [{"lang": "en", "value": "The EAP-pwd implementation in hostapd (EAP server) before 2.8 and wpa_supplicant (EAP peer) before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference (denial of service). This affects eap_server/eap_server_pwd.c and eap_peer/eap_pwd.c."}, {"lang": "es", "value": "La implementaci\u00f3n de EAP-pwd en hostapd (servidor EAP),versiones anteriores a 2.8, y wpa_supplicant (peer EAP), versiones anteriores a 2.8, no valida correctamente el estado de reensamblado de la fragmentaci\u00f3n para un caso en el que se pudiera recibir un fragmento no esperado. Esto podr\u00eda derivar en la terminaci\u00f3n del proceso debido a una derivaci\u00f3n de un puntero NULL (denegaci\u00f3n de servicio). Esto afecta a eap_server/eap_server_pwd.c y eap_peer/eap_pwd.c."}], "lastModified": "2023-11-07T03:03:03.143", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:w1.fi:hostapd:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2C8A8224-43A2-4695-9FFE-DD2FB409C89F", "versionEndExcluding": "2.8"}, {"criteria": "cpe:2.3:a:w1.fi:wpa_supplicant:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "771CFB6E-2EC2-4453-98EC-42BFC280F745", "versionEndExcluding": "2.8"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}