vulnerability

Google Android Vulnerability: CVE-2015-5310

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
3	(AV:A/AC:L/Au:N/C:P/I:N/A:N)	Jan 6, 2016	Jan 29, 2016	Feb 23, 2018

Severity

CVSS

(AV:A/AC:L/Au:N/C:P/I:N/A:N)

Published

Jan 6, 2016

Added

Jan 29, 2016

Modified

Feb 23, 2018

Description

The WNM Sleep Mode code in wpa_supplicant 2.x before 2.6 does not properly ignore key data in response frames when management frame protection (MFP) was not negotiated, which allows remote attackers to inject arbitrary broadcast or multicast packets or cause a denial of service (ignored packets) via a WNM Sleep Mode response.

Solution

google-android-upgrade-latest

References

BID-77541
CVE-2015-5310
https://attackerkb.com/topics/CVE-2015-5310
DEBIAN-DSA-3397
URL-http://source.android.com/security/bulletin/2016-01-01.html

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today