Security Advisory

CVE-2020-26144

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-11 19:33:04

Last updated 2026-04-14 08:49:08

Assigner mitre

State PUBLISHED

Description

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 (i.e., LLC/SNAP) header for EAPOL. An adversary can abuse this to inject arbitrary network packets independent of the network configuration.

← Browse all CVEs View on cve.org ↗