CVE-2022-23303

CRITICAL

W1.fi Hostapd < 2.10 - Information Disclosure

Title source: rule

Description

The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494.

Exploits (1)

nomisec WORKING POC

by web-logs2 · poc

https://github.com/web-logs2/hostapd_mirror

View Code ZIP pw:eip

References (4)

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPDHU5MV464CZBPX7N2SNMUYP6DFIBZL/

[Third Party Advisory] https://security.gentoo.org/glsa/202309-16

[Mitigation, Patch, Third Party Advisory] https://w1.fi/security/2022-1/

[Mailing List] https://lists.debian.org/debian-lts-announce/2025/04/msg00019.html

Scores

CVSS v3 9.8

EPSS 0.0033

EPSS Percentile 55.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-203

Status published

Products (3)

fedoraproject/fedora 35

w1.fi/hostapd < 2.10

w1.fi/wpa_supplicant < 2.10

Published Jan 17, 2022

Tracked Since Feb 18, 2026