esp8266 · earlephilhower · Jul 26, 2020 · Jul 25, 2020 · Jul 26, 2020 · Jul 26, 2020
diff --git a/libraries/ESP8266WiFi/src/ESP8266WiFiGeneric.cpp b/libraries/ESP8266WiFi/src/ESP8266WiFiGeneric.cpp
@@ -133,6 +133,12 @@ WiFiEventHandler ESP8266WiFiGenericClass::onStationModeAuthModeChanged(std::func
     WiFiEventHandler handler = std::make_shared<WiFiEventHandlerOpaque>(WIFI_EVENT_STAMODE_AUTHMODE_CHANGE, [f](System_Event_t* e){
         auto& src = e->event_info.auth_change;
         WiFiEventStationModeAuthModeChanged dst;
+        if ((src.old_mode != AUTH_OPEN) && (src.new_mode == AUTH_OPEN)) {
+            // CVE-2020-12638 workaround.  When we get a change to AUTH_OPEN from any other mode, drop the WiFi link because it's a downgrade attack
+            // TODO - When upgrading to 3.x.x with fix, remove this code
+            DEBUG_WIFI("WIFI_EVENT_STAMODE_AUTHMODE_CHANGE downgrade from %s to AUTH_OPEN, potential downgrade attack. Reconnecting WiFi. See CVE-2020-12638 for more details\n");
+            WiFi.reconnect();  // Disconnects from STA and then reconnects
+        }
         dst.oldMode = src.old_mode;
         dst.newMode = src.new_mode;
         f(dst);