wpa_supplicant EAPOL-Key Messages Information Disclosure Vulnerability [CVE-2018-14526]
CVE Number – CVE-2018-14526
A vulnerability in the rsn_supp/wpa.c function of wpa_supplicant could allow an unauthenticated, adjacent attacker to access sensitive information on a targeted device.
The vulnerability is due to the improper functioning of a periodic integrity-checking mechanism that handles Extensible Authentication Protocol over LAN (EAPOL) key messaging. Under certain conditions, the integrity of EAPOL-key messages is not checked, leading to a decryption oracle. An attacker who can access the network could exploit this vulnerability by monitoring the network. A successful exploit could allow the attacker to decrypt sensitive information on the targeted device, which could lead to further reconnaissance attacks.
The vendor has confirmed the vulnerability and released software updates.
-
To exploit this vulnerability, the attacker must have access to a trusted or internal network. This access requirement could reduce the likelihood of a successful exploit.
-
Administrators are advised to apply the appropriate updates.
Administrators are advised to grant system access only to trusted users.
Administrators are advised to allow only privileged users to access administration or management systems.
Administrators are advised to monitor affected systems.
-
The vendor has released a security advisory at the following link: Unauthenticated EAPOL-Key decryption in wpa_supplicant
-
The vendor has released a software update at the following link: Software Patch
Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.