CVE-2025-27558

IEEE P802.11-REVme D1.1 through D7.0 allows FragAttacks against mesh networks. In mesh networks using Wi-Fi Protected Access (WPA, WPA2, or WPA3) or Wired Equivalent Privacy (WEP), an adversary can exploit this vulnerability to inject arbitrary frames towards devices that support receiving non-SSP A-MSDU frames. NOTE: this issue exists because of an incorrect fix for CVE-2020-24588. P802.11-REVme, as of early 2025, is a planned release of the 802.11 standard.

CVSS v3 9.1 CRITICAL

9.1^/10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://github.com/vanhoefm/fragattacks-survey-public/blob/main/README.md

Configurations

No configuration.

History

22 May 2025, 19:15

Type	Values Removed	Values Added
Summary		(es) IEEE P802.11-REVme D1.1 a D7.0 permite ataques FragAttack contra redes en malla. En redes en malla que utilizan Acceso Protegido Wi-Fi (WPA, WPA2 o WPA3) o Privacidad Equivalente por Cable (WEP), un atacante puede explotar esta vulnerabilidad para inyectar tramas arbitrarias en dispositivos que admiten la recepción de tramas A-MSDU no SSP. NOTA: Este problema existe debido a una corrección incorrecta para CVE-2020-24588. P802.11-REVme, a principios de 2025, es una versión planificada del estándar 802.11.
CWE		CWE-345
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.1

21 May 2025, 19:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-21 19:16

Updated : 2025-05-22 19:15

NVD link : CVE-2025-27558

Mitre link : CVE-2025-27558

CVE.ORG link : CVE-2025-27558

JSON object : View

Products Affected

No product.

CWE

CWE-345

Insufficient Verification of Data Authenticity

9.1 /10