Back to search
CVE-2020-26145
Published: May 11, 2021
Modified: Apr 14, 2026
PUBLISHED
Description
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://www.fragattacks.com
x_refsource_MISC
https://github.com/vanhoefm/fragattacks/blob/master/SUMMARY.md
x_refsource_MISC
[oss-security] 20210511 various 802.11 security issues - fragattacks.com
mailing-list
x_refsource_MLIST
https://cert-portal.siemens.com/productcert/pdf/ssa-913875.pdf
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now