When using special mode to connect to enterprise wifi, certain options are not properly configured and attackers can pretend to be enterprise wifi through a carefully constructed wifi with the same name, which can lead to man-in-the-middle attacks.
History

Tue, 17 Dec 2024 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 17 Dec 2024 03:00:00 +0000

Type Values Removed Values Added
Description When using special mode to connect to enterprise wifi, certain options are not properly configured and attackers can pretend to be enterprise wifi through a carefully constructed wifi with the same name, which can lead to man-in-the-middle attacks.
Weaknesses CWE-306
References
Metrics cvssV3_1

{'score': 6.4, 'vector': 'CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Vivo

Published: 2024-12-17T02:36:45.758Z

Updated: 2024-12-17T14:54:21.557Z

Reserved: 2020-04-30T00:00:00.000Z

Link: CVE-2020-12484

cve-icon Vulnrichment

Updated: 2024-12-17T14:54:17.499Z

cve-icon NVD

Status : Received

Published: 2024-12-17T03:15:05.613

Modified: 2024-12-17T03:15:05.613

Link: CVE-2020-12484

cve-icon Redhat

No data.