Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CVE-2020-12638 // WPA2 downgrade in Espressif #548

Closed
NS-K opened this issue Aug 3, 2020 · 5 comments
Closed

CVE-2020-12638 // WPA2 downgrade in Espressif #548

NS-K opened this issue Aug 3, 2020 · 5 comments
Assignees
@rojer

Comments

@NS-K
Copy link

NS-K commented Aug 3, 2020

Affected Devices : ESP32 & ESP8266

Espressif's Security Advisory :
https://www.espressif.com/sites/default/files/advisory_downloads/Security%20advisory_%20authentication%20bypass.pdf

Proof of Concept :
https://lbsfilm.at/blog/wpa2-authenticationmode-downgrade-in-espressif-microprocessors
@rojer rojer self-assigned this Aug 3, 2020
@rojer
Copy link
Collaborator

rojer commented Aug 3, 2020

thanks for reporting. this is indeed a serious issue. i will update ESP32 SDK soon but for ESP8266 it's not that easy: the fix is only made available for RTOS SDK and NON-OS SDK 3.0+ while we are still using v2.2.
i filed espressif/ESP8266_NONOS_SDK#326, let's see what they have to say.

@NS-K NS-K mentioned this issue Aug 3, 2020
Closed
@d-a-v
Copy link

d-a-v commented Aug 3, 2020

It is fixed in esp8266 Arduino 2.7.4 and master with a workaround confirmed to work by the author.

@rojer
Copy link
Collaborator

rojer commented Aug 3, 2020

i see, esp8266/Arduino#7486
we should be able to do something like that too.

@NS-K
Copy link
Author

NS-K commented Aug 3, 2020

It seems to be very easy to implement on 2.X.X

rojer added a commit that referenced this issue Aug 4, 2020
@rojer
ESP32: Update ESP-IDF to 3.3+bf02206
24c520d 
Our branch: https://github.com/mongoose-os/esp-idf/tree/3.3-r5

Based on upstream commit: espressif/esp-idf@bf02206

#548

CL: ESP32: Update ESP-IDF to 3.3+bf02206
rojer added a commit to mongoose-os-libs/wifi that referenced this issue Aug 4, 2020
@rojer
Workaround for CVE-2020-12638
2b07bdb 
cesanta/mongoose-os#548
@rojer
Copy link
Collaborator

rojer commented Aug 4, 2020

updated ESP-IDF and applied workaround for ESP8266

@rojer rojer closed this as completed Aug 4, 2020
rojer added a commit to mongoose-os-apps/shelly-homekit that referenced this issue Aug 5, 2020
@rojer
Rebuild to pick up CVE-2020-12638 fix
ee52eca 
cesanta/mongoose-os#548
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rojer rojer

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@rojer @d-a-v @NS-K