THREATOPS
THREAT OPSThreat News › [NVD] CVE-2022-23303 (CRITICAL 9.8) — The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494.

[NVD] CVE-2022-23303 (CRITICAL 9.8) — The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494.

lownvdPublished 2022-01-17

CVE-2022-23303 CVSS: 9.8 CRITICAL Published: 2022-01-17T02:15:06.760

The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494.

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2022-23303