CVE-2019-9496

HIGH

hostapd <2.8 - DoS

Title source: llm

Description

An invalid authentication sequence could result in the hostapd process terminating due to missing state validation steps when processing the SAE confirm message when in hostapd/AP mode. All version of hostapd with SAE support are vulnerable. An attacker may force the hostapd process to terminate, performing a denial of service attack. Both hostapd with SAE support and wpa_supplicant with SAE support prior to and including version 2.7 are affected.

References (9)

[Patch, Vendor Advisory] https://w1.fi/security/2019-3/

[Vendor Advisory] https://www.synology.com/security/advisory/Synology_SA_19_16

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/56OBBOJJSKRTDGEXZOVFSTP4HDSDBLAE/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TDOZGR3T7FVO5JSZWK2QPR7AOFIEJTIZ/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVMJOFEYBGXZLFF5IOLW67SSOPKFEJP3/

[Various Sources] https://security.FreeBSD.org/advisories/FreeBSD-SA-19:03.wpa.asc

[Mailing List] https://seclists.org/bugtraq/2019/May/40

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/152914/FreeBSD-Security-Advisory-FreeBSD-SA-19-03.wpa.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00021.html

Scores

CVSS v3 7.5

EPSS 0.0236

EPSS Percentile 85.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-287 CWE-642

Status published

Products (5)

fedoraproject/fedora 28

fedoraproject/fedora 29

fedoraproject/fedora 30

w1.fi/hostapd < 2.7

w1.fi/wpa_supplicant < 2.7

Published Apr 17, 2019

Tracked Since Feb 18, 2026