Multiple Products - Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification (FragAttacks)
Fortinet PSIRT Advisories
Fortinet PSIRT Contact:
Website: https://fortiguard.fortinet.com/faq/psirt-contact
FG-IR-21-071
Final
1
1
2021-06-01T00:00:00
Current version
2021-06-01T00:00:00
2021-06-01T00:00:00
On May 11th, 2021, Mathy Vanhoef (New York University Abu Dhabi) published a new paper, Fragment and Forge: Breaking Wi-Fi Through Frame Aggregation and Fragmentation, on a number of vulnerabilities in the base 802.11 protocol (802.11 is the standard that Wi-Fi is built on). The paper discloses three design flaws in the 802.11 standard and nine common implementation flaws related to aggregation and fragmentation functionality. These vulnerabilities could allow an attacker to forge encrypted frames, which could in turn enable the exfiltration of sensitive data from a targeted device.
Information disclosure
https://fortiguard.fortinet.com/psirt/FG-IR-21-071
Multiple Products - Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification (FragAttacks)
The FragAttacks paper can be accessed via the following link: https://papers.mathyvanhoef.com/usenix2021.pdf
The FragAttacks paper can be accessed via the following link: https://papers.mathyvanhoef.com/usenix2021.pdf
For more information about the vulnerabilities: https://www.fragattacks.com/
For more information about the vulnerabilities: https://www.fragattacks.com/
FortiAP 7.0.1
FortiAP 7.0.0
FortiAP 6.4.6
FortiAP 6.4.5
FortiAP 6.4.4
FortiAP 6.4.3
FortiAP 6.0.6
FortiAP 6.0.5
FortiAP 6.0.4
FortiAP 6.0.3
FortiAP 6.0.2
FortiAP 6.0.1
FortiAP 6.0.0
FortiAP 5.6.5
FortiAP 5.6.4
FortiAP 5.6.3
FortiAP 5.6.2
FortiAP 5.6.1
FortiAP 5.6.0
FortiAP 5.4.4
FortiAP 5.4.3
FortiAP 5.4.2
FortiAP 5.4.1
FortiAP 5.4.0
FortiAP 5.3.3
FortiAP 5.2.7
FortiAP 5.2.6
FortiAP 5.2.5
FortiAP 5.2.4
FortiAP 5.2.3
FortiAP 5.2.2
FortiAP 5.2.1
FortiAP 5.2.0
FortiAP 5.0.11
FortiAP 5.0.10
FortiAP 5.0.9
FortiAP 5.0.8
FortiAP 5.0.7
FortiAP 5.0.6
FortiAP 5.0.5
FortiAP 5.0.4
FortiAP 5.0.3
FortiAP 5.0.2
FortiAP 5.0.1
FortiAP 5.0.0
FortiAP 4.3.9
FortiAP 4.3.8
FortiAP 4.3.7
FortiAP 4.3.6
FortiAP 4.3.5
FortiAP 4.3.4
FortiAP 4.3.3
FortiAP 4.3.2
FortiAP 4.3.1
FortiAP 4.3.0
FortiAP 4.2.1
FortiAP-C 5.4.2
FortiAP-C 5.4.1
FortiAP-C 5.4.0
FortiAP-C 5.2.1
FortiAP-C 5.2.0
FortiAP-S 6.4.6
FortiAP-S 6.4.5
FortiAP-S 6.4.4
FortiAP-S 6.4.3
FortiAP-S 6.4.2
FortiAP-S 6.4.1
FortiAP-S 6.4.0
FortiAP-S 6.2.6
FortiAP-S 6.2.5
FortiAP-S 6.2.4
FortiAP-S 6.2.3
FortiAP-S 6.2.2
FortiAP-S 6.2.1
FortiAP-S 6.2.0
FortiAP-S 6.0.6
FortiAP-S 6.0.5
FortiAP-S 6.0.4
FortiAP-S 6.0.3
FortiAP-S 6.0.2
FortiAP-S 6.0.1
FortiAP-S 6.0.0
FortiAP-S 5.6.4
FortiAP-S 5.6.3
FortiAP-S 5.6.2
FortiAP-S 5.6.1
FortiAP-S 5.6.0
FortiAP-S 5.4.4
FortiAP-S 5.4.3
FortiAP-U 6.2.1
FortiAP-U 6.2.0
FortiAP-U 6.0.4
FortiAP-U 6.0.3
FortiAP-U 6.0.2
FortiAP-U 6.0.1
FortiAP-U 6.0.0
FortiAP-U 5.4.6
FortiAP-U 5.4.5
FortiAP-U 5.4.4
FortiAP-U 5.4.3
FortiAP-U 5.4.0
FortiAP-W2 7.0.0
FortiAP-W2 6.4.6
FortiAP-W2 6.4.5
FortiAP-W2 6.4.4
FortiAP-W2 6.4.3
FortiAP-W2 6.4.2
FortiAP-W2 6.4.1
FortiAP-W2 6.4.0
FortiAP-W2 6.2.6
FortiAP-W2 6.2.5
FortiAP-W2 6.2.4
FortiAP-W2 6.2.3
FortiAP-W2 6.2.2
FortiAP-W2 6.2.1
FortiAP-W2 6.2.0
FortiAP-W2 6.0.6
FortiAP-W2 6.0.5
FortiAP-W2 6.0.4
FortiAP-W2 6.0.3
FortiAP-W2 6.0.2
FortiAP-W2 6.0.1
FortiAP-W2 6.0.0
FortiAP-W2 5.6.4
FortiAP-W2 5.6.3
FortiAP-W2 5.6.2
FortiAP-W2 5.6.1
FortiAP-W2 5.6.0
FortiAP-W2 5.4.4
FortiAP-W2 5.4.3
FortiAP-W2 5.4.2
FortiAP-W2 5.4.1
FortiAP-W2 5.4.0
FortiOS 7.0.1
FortiOS 7.0.0
FortiOS 6.4.14
FortiOS 6.4.13
FortiOS 6.4.12
FortiOS 6.4.11
FortiOS 6.4.10
FortiOS 6.4.9
FortiOS 6.4.8
FortiOS 6.4.7
FortiOS 6.4.6
FortiOS 6.4.5
FortiOS 6.4.4
FortiOS 6.4.3
FortiOS 6.4.2
FortiOS 6.4.1
FortiOS 6.4.0
FortiOS 6.2.15
FortiOS 6.2.14
FortiOS 6.2.13
FortiOS 6.2.12
FortiOS 6.2.11
FortiOS 6.2.10
FortiOS 6.2.9
FortiOS 6.2.8
FortiOS 6.2.7
FortiOS 6.2.6
FortiOS 6.2.5
FortiOS 6.2.4
FortiOS 6.2.3
FortiOS 6.2.2
FortiOS 6.2.1
FortiOS 6.2.0
FortiOS 6.0.17
FortiOS 6.0.16
FortiOS 6.0.15
FortiOS 6.0.14
FortiOS 6.0.13
FortiOS 6.0.12
FortiOS 6.0.11
FortiOS 6.0.10
FortiOS 6.0.9
FortiOS 6.0.8
FortiOS 6.0.7
FortiOS 6.0.6
FortiOS 6.0.5
FortiOS 6.0.4
FortiOS 6.0.3
FortiOS 6.0.2
FortiOS 6.0.1
FortiOS 6.0.0
FortiOS 5.6.14
FortiOS 5.6.13
FortiOS 5.6.12
FortiOS 5.6.11
FortiOS 5.6.10
FortiOS 5.6.9
FortiOS 5.6.8
FortiOS 5.6.7
FortiOS 5.6.6
FortiOS 5.6.5
FortiOS 5.6.4
FortiOS 5.6.3
FortiOS 5.6.2
FortiOS 5.6.1
FortiOS 5.6.0
Meru AP 8.6.1
Meru AP 8.6.0
Meru AP 8.5.4
Meru AP 8.5.3
Meru AP 8.5.2
Meru AP 8.5.1
Meru AP 8.5.0
Meru AP 8.4.8
Meru AP 8.4.7
Meru AP 8.4.6
Meru AP 8.4.5
Meru AP 8.4.4
Meru AP 8.4.2
Meru AP 8.4.1
Meru AP 8.4.0
Meru AP 8.3.3
Meru AP 8.3.2
Meru AP 8.3.0
Meru AP 8.2.7
Meru AP 8.2.6
Meru AP 8.2.4
Meru AP 8.1.2
Multiple Products - Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification (FragAttacks)
CVE-2020-24587
FortiAP-7.0.1
FortiAP-7.0.0
FortiAP-6.4.6
FortiAP-6.4.5
FortiAP-6.4.4
FortiAP-6.4.3
FortiAP-6.0.6
FortiAP-6.0.5
FortiAP-6.0.4
FortiAP-6.0.3
FortiAP-6.0.2
FortiAP-6.0.1
FortiAP-6.0.0
FortiAP-5.6.5
FortiAP-5.6.4
FortiAP-5.6.3
FortiAP-5.6.2
FortiAP-5.6.1
FortiAP-5.6.0
FortiAP-5.4.4
FortiAP-5.4.3
FortiAP-5.4.2
FortiAP-5.4.1
FortiAP-5.4.0
FortiAP-5.3.3
FortiAP-5.2.7
FortiAP-5.2.6
FortiAP-5.2.5
FortiAP-5.2.4
FortiAP-5.2.3
FortiAP-5.2.2
FortiAP-5.2.1
FortiAP-5.2.0
FortiAP-5.0.11
FortiAP-5.0.10
FortiAP-5.0.9
FortiAP-5.0.8
FortiAP-5.0.7
FortiAP-5.0.6
FortiAP-5.0.5
FortiAP-5.0.4
FortiAP-5.0.3
FortiAP-5.0.2
FortiAP-5.0.1
FortiAP-5.0.0
FortiAP-4.3.9
FortiAP-4.3.8
FortiAP-4.3.7
FortiAP-4.3.6
FortiAP-4.3.5
FortiAP-4.3.4
FortiAP-4.3.3
FortiAP-4.3.2
FortiAP-4.3.1
FortiAP-4.3.0
FortiAP-4.2.1
FortiAP-C-5.4.2
FortiAP-C-5.4.1
FortiAP-C-5.4.0
FortiAP-C-5.2.1
FortiAP-C-5.2.0
FortiAP-S-6.4.6
FortiAP-S-6.4.5
FortiAP-S-6.4.4
FortiAP-S-6.4.3
FortiAP-S-6.4.2
FortiAP-S-6.4.1
FortiAP-S-6.4.0
FortiAP-S-6.2.6
FortiAP-S-6.2.5
FortiAP-S-6.2.4
FortiAP-S-6.2.3
FortiAP-S-6.2.2
FortiAP-S-6.2.1
FortiAP-S-6.2.0
FortiAP-S-6.0.6
FortiAP-S-6.0.5
FortiAP-S-6.0.4
FortiAP-S-6.0.3
FortiAP-S-6.0.2
FortiAP-S-6.0.1
FortiAP-S-6.0.0
FortiAP-S-5.6.4
FortiAP-S-5.6.3
FortiAP-S-5.6.2
FortiAP-S-5.6.1
FortiAP-S-5.6.0
FortiAP-S-5.4.4
FortiAP-S-5.4.3
FortiAP-U-6.2.1
FortiAP-U-6.2.0
FortiAP-U-6.0.4
FortiAP-U-6.0.3
FortiAP-U-6.0.2
FortiAP-U-6.0.1
FortiAP-U-6.0.0
FortiAP-U-5.4.6
FortiAP-U-5.4.5
FortiAP-U-5.4.4
FortiAP-U-5.4.3
FortiAP-U-5.4.0
FortiAP-W2-7.0.0
FortiAP-W2-6.4.6
FortiAP-W2-6.4.5
FortiAP-W2-6.4.4
FortiAP-W2-6.4.3
FortiAP-W2-6.4.2
FortiAP-W2-6.4.1
FortiAP-W2-6.4.0
FortiAP-W2-6.2.6
FortiAP-W2-6.2.5
FortiAP-W2-6.2.4
FortiAP-W2-6.2.3
FortiAP-W2-6.2.2
FortiAP-W2-6.2.1
FortiAP-W2-6.2.0
FortiAP-W2-6.0.6
FortiAP-W2-6.0.5
FortiAP-W2-6.0.4
FortiAP-W2-6.0.3
FortiAP-W2-6.0.2
FortiAP-W2-6.0.1
FortiAP-W2-6.0.0
FortiAP-W2-5.6.4
FortiAP-W2-5.6.3
FortiAP-W2-5.6.2
FortiAP-W2-5.6.1
FortiAP-W2-5.6.0
FortiAP-W2-5.4.4
FortiAP-W2-5.4.3
FortiAP-W2-5.4.2
FortiAP-W2-5.4.1
FortiAP-W2-5.4.0
FortiOS-7.0.1
FortiOS-7.0.0
FortiOS-6.4.14
FortiOS-6.4.13
FortiOS-6.4.12
FortiOS-6.4.11
FortiOS-6.4.10
FortiOS-6.4.9
FortiOS-6.4.8
FortiOS-6.4.7
FortiOS-6.4.6
FortiOS-6.4.5
FortiOS-6.4.4
FortiOS-6.4.3
FortiOS-6.4.2
FortiOS-6.4.1
FortiOS-6.4.0
FortiOS-6.2.15
FortiOS-6.2.14
FortiOS-6.2.13
FortiOS-6.2.12
FortiOS-6.2.11
FortiOS-6.2.10
FortiOS-6.2.9
FortiOS-6.2.8
FortiOS-6.2.7
FortiOS-6.2.6
FortiOS-6.2.5
FortiOS-6.2.4
FortiOS-6.2.3
FortiOS-6.2.2
FortiOS-6.2.1
FortiOS-6.2.0
FortiOS-6.0.17
FortiOS-6.0.16
FortiOS-6.0.15
FortiOS-6.0.14
FortiOS-6.0.13
FortiOS-6.0.12
FortiOS-6.0.11
FortiOS-6.0.10
FortiOS-6.0.9
FortiOS-6.0.8
FortiOS-6.0.7
FortiOS-6.0.6
FortiOS-6.0.5
FortiOS-6.0.4
FortiOS-6.0.3
FortiOS-6.0.2
FortiOS-6.0.1
FortiOS-6.0.0
FortiOS-5.6.14
FortiOS-5.6.13
FortiOS-5.6.12
FortiOS-5.6.11
FortiOS-5.6.10
FortiOS-5.6.9
FortiOS-5.6.8
FortiOS-5.6.7
FortiOS-5.6.6
FortiOS-5.6.5
FortiOS-5.6.4
FortiOS-5.6.3
FortiOS-5.6.2
FortiOS-5.6.1
FortiOS-5.6.0
Meru AP-8.6.1
Meru AP-8.6.0
Meru AP-8.5.4
Meru AP-8.5.3
Meru AP-8.5.2
Meru AP-8.5.1
Meru AP-8.5.0
Meru AP-8.4.8
Meru AP-8.4.7
Meru AP-8.4.6
Meru AP-8.4.5
Meru AP-8.4.4
Meru AP-8.4.2
Meru AP-8.4.1
Meru AP-8.4.0
Meru AP-8.3.3
Meru AP-8.3.2
Meru AP-8.3.0
Meru AP-8.2.7
Meru AP-8.2.6
Meru AP-8.2.4
Meru AP-8.1.2
3.9
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R
https://fortiguard.fortinet.com/psirt/FG-IR-21-071
Multiple Products - Multiple Vulnerabilities in Frame Aggregation and Fragmentation Implementations of 802.11 Specification (FragAttacks)
Reference>
The FragAttacks paper can be accessed via the following link: https://papers.mathyvanhoef.com/usenix2021.pdf
The FragAttacks paper can be accessed via the following link: https://papers.mathyvanhoef.com/usenix2021.pdf
For more information about the vulnerabilities: https://www.fragattacks.com/
For more information about the vulnerabilities: https://www.fragattacks.com/