CVE-2019-12587

moderate-risk
Published 2019-09-04

The EAP peer implementation in Espressif ESP-IDF 2.0.0 through 4.0.0 and ESP8266_NONOS_SDK 2.2.0 through 3.1.0 allows the installation of a zero Pairwise Master Key (PMK) after the completion of any EAP authentication method, which allows attackers in radio range to replay, decrypt, or spoof frames via a rogue access point.

Do I need to act?

-
0.08% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.1/10 High
ADJACENT_NETWORK / LOW complexity

Affected Products (2)

Esp8266 Nonos Sdk

Affected Vendors

Espressif

References (6)

Exploit https://github.com/Matheus-Garbelini/esp32_esp8266_attacks
Product https://github.com/espressif
Patch https://matheus-garbelini.github.io/home/post/zero-pmk-installation/
Exploit https://github.com/Matheus-Garbelini/esp32_esp8266_attacks
Product https://github.com/espressif
Patch https://matheus-garbelini.github.io/home/post/zero-pmk-installation/
32
/ 100
moderate-risk
Severity 25/34 · High
Exploitability 0/34 · Minimal
Exposure 7/34 · Low