vulnerability
FreeBSD: VID-8d20bd48-a4f3-11ec-90de-1c697aa5a594 (CVE-2020-26144): FreeBSD-kernel -- Multiple WiFi issues
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 3 | (AV:A/AC:L/Au:N/C:N/I:P/A:N) | Mar 16, 2022 | Nov 4, 2022 | Dec 10, 2025 |
Severity
3
CVSS
(AV:A/AC:L/Au:N/C:N/I:P/A:N)
Published
Mar 16, 2022
Added
Nov 4, 2022
Modified
Dec 10, 2025
Description
Problem Description: The paper "Fragment and Forge: Breaking Wi-Fi Through Frame Aggregation and Fragmentation" reported a number of security vulnerabilities in the 802.11 specification related to frame aggregation and fragmentation. Additionally, FreeBSD 12.x missed length validation of SSIDs and Information Elements (IEs). Impact: As reported on the FragAttacks website, the "design flaws are hard to abuse because doing so requires user interaction or is only possible when using uncommon network settings." Under suitable conditions an attacker may be able to extract sensitive data or inject data.
Solutions
freebsd-upgrade-base-13_0-release-p8freebsd-upgrade-base-12_3-release-p3freebsd-upgrade-base-12_2-release-p14
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.