CVE-2022-47522
CVSS V2 None
CVSS V3 None
Description
The IEEE 802.11 specifications through 802.11ax allow physically proximate attackers to intercept (possibly cleartext) target-destined frames by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to the access point (such as authentication frames or re-association frames) to remove the target's original security context. This behavior occurs because the specifications do not require an access point to purge its transmit queue before removing a client's pairwise encryption key.
Overview
- CVE ID
- CVE-2022-47522
- Assigner
- cve@mitre.org
- Vulnerability Status
- Undergoing Analysis
- Published Version
- 2023-04-15T02:15:07
- Last Modified Date
- 2023-04-15T02:25:57
References
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2022-47522 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47522 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-17 04:46:18 | Added to TrackCVE | |||
| 2023-04-21 11:00:46 | Awaiting Analysis | Undergoing Analysis | Vulnerability Status | updated |
| 2023-04-21 16:00:56 | Undergoing Analysis | Awaiting Analysis | Vulnerability Status | updated |
| 2023-04-26 15:00:51 | Awaiting Analysis | Undergoing Analysis | Vulnerability Status | updated |