CVE-2020-26141

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-26141

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-26141.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2020-26141

Aliases

2869483
A-177911676
ASB-A-177911676

Downstream

DEBIAN-CVE-2020-26141

OESA-2021-1407

RHSA-2021:4140

RHSA-2021:4356

SUSE-SU-2021:1887-1

SUSE-SU-2021:1888-1

SUSE-SU-2021:1889-1

SUSE-SU-2021:1890-1

SUSE-SU-2021:1891-1

SUSE-SU-2021:1899-1

SUSE-SU-2021:1912-1

SUSE-SU-2021:1913-1

SUSE-SU-2021:1975-1

SUSE-SU-2021:1977-1

SUSE-SU-2021:2208-1

SUSE-SU-2021:2406-1

SUSE-SU-2021:2421-1

SUSE-SU-2021:2451-1

UBUNTU-CVE-2020-26141

USN-4999-1

USN-5000-1

USN-5000-2

USN-5001-1

USN-5361-1

openSUSE-SU-2021:0843-1

openSUSE-SU-2021:0947-1

openSUSE-SU-2021:1975-1

openSUSE-SU-2021:1977-1

openSUSE-SU-2024:10728-1

openSUSE-SU-2024:13704-1

Related

Published

2021-05-11T20:15:08Z

Modified

2025-08-09T19:01:28Z

Severity

6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator

Summary

[none]

Details

An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol.

References

Affected packages