VYPR
Low severity3.5NVD Advisory· Published May 11, 2021· Updated Jun 17, 2026

CVE-2020-24586

CVE-2020-24586

Description

The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances, when another device sends fragmented frames encrypted using WEP, CCMP, or GCMP, this can be abused to inject arbitrary network packets and/or exfiltrate user data.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

234

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.