AVG-448 log

Issue	Severity	Remote	Type	Description
CVE-2017-13088	High	Yes	Man-in-the-middle	A vulnerability has been discovered that allows reinstallation of the integrity group key (IGTK) when processing a Wireless Network Management (WNM) Sleep...
CVE-2017-13087	High	Yes	Man-in-the-middle	A vulnerability has been discovered that allows reinstallation of the group key (GTK) when processing a Wireless Network Management (WNM) Sleep Mode Response frame.
CVE-2017-13082	High	Yes	Man-in-the-middle	A vulnerability has been discovered that allows accepting a retransmitted FT Reassociation Request and reinstalling the pairwise key (PTK) while processing it.
CVE-2017-13081	High	Yes	Man-in-the-middle	A vulnerability has been discovered that allows reinstallation of the integrity group key (IGTK) in the group key handshake.
CVE-2017-13080	High	Yes	Man-in-the-middle	A vulnerability has been discovered that allows reinstallation of the group key (GTK) in the group key handshake.
CVE-2017-13079	High	Yes	Man-in-the-middle	A vulnerability has been discovered that allows reinstallation of the integrity group key (IGTK) in the 4-way handshake.
CVE-2017-13078	High	Yes	Man-in-the-middle	A vulnerability has been discovered that allows reinstallation of the group key (GTK) in the 4-way handshake.
CVE-2017-13077	High	Yes	Man-in-the-middle	A vulnerability has been discovered that allows reinstallation of the pairwise encryption key (PTK-TK) in the 4-way handshake.

Date	Advisory	Package	Type
16 Oct 2017	ASA-201710-23	hostapd	man-in-the-middle

References
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt https://papers.mathyvanhoef.com/ccs2017.pdf https://www.kb.cert.org/vuls/id/228519 https://www.krackattacks.com/