#VU59106 Input validation error in wpa_supplicant - CVE-2021-30004


| Updated: 2022-01-17

Vulnerability identifier: #VU59106

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2021-30004

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
wpa_supplicant
Server applications / Encryption software

Vendor: Jouni Malinen

Description

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists due to insufficient validation of user-supplied input in tls/pkcs1.c and tls/x509v3.c files in wpa_supplicant and hostapd when handling AlgorithmIdentifier parameters. A remote attacker can pass specially crafted input to the application and perform MitM attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

wpa_supplicant: 2.0 - 2.9

External links
https://w1.fi/cgit/hostap/commit/?id=a0541334a6394f8237a4393b7372693cd7e96f15

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Dell RecoverPoint Classic
Multiple vulnerabilities in Dell PowerStore Family
Multiple vulnerabilities in Dell PowerScale OneFS
Gentoo update for wpa_supplicant, hostapd
Slackware update for wpa_supplicant
SUSE update for wpa_supplicant
SUSE update for wpa_supplicant
MitM attack in hostapd
MitM attack in wpa_supplicant