UBUNTU-CVE-2023-52160
- Source
- https://ubuntu.com/security/CVE-2023-52160
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-52160.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2023-52160
- Upstream
- Published
- 2024-02-22T17:15:00Z
- Modified
- 2025-10-24T05:02:24Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVSS Calculator
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVSS Calculator
- Ubuntu - medium
- Summary
- [none]
- Details
-
The implementation of PEAP in wpasupplicant through 2.10 allows authentication bypass. For a successful attack, wpasupplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eappeapdecrypt vulnerability can then be abused to skip Phase 2 authentication. The attack vector is sending an EAP-TLV Success packet instead of starting Phase 2. This allows an adversary to impersonate Enterprise Wi-Fi networks.
- References
Affected packages
Ubuntu:16.04:LTS
wpa
Package
- Name
- wpa
- Purl
- pkg:deb/ubuntu/wpa@2.4-0ubuntu6.8+esm1?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.4-0ubuntu3
2.4-0ubuntu4
2.4-0ubuntu5
2.4-0ubuntu6
2.4-0ubuntu6.2
2.4-0ubuntu6.3
2.4-0ubuntu6.4
2.4-0ubuntu6.5
2.4-0ubuntu6.6
2.4-0ubuntu6.7
2.4-0ubuntu6.8
2.4-0ubuntu6.8+esm1
Ubuntu:18.04:LTS
wpa
Package
- Name
- wpa
- Purl
- pkg:deb/ubuntu/wpa@2:2.6-15ubuntu2.8+esm1?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.4-0ubuntu10
2:2.*
2:2.4-1.1ubuntu1
2:2.6-15ubuntu1
2:2.6-15ubuntu2
2:2.6-15ubuntu2.1
2:2.6-15ubuntu2.2
2:2.6-15ubuntu2.3
2:2.6-15ubuntu2.4
2:2.6-15ubuntu2.5
2:2.6-15ubuntu2.6
2:2.6-15ubuntu2.7
2:2.6-15ubuntu2.8
2:2.6-15ubuntu2.8+esm1
Ubuntu:20.04:LTS
wpa
Package
- Name
- wpa
- Purl
- pkg:deb/ubuntu/wpa@2:2.9-1ubuntu4.6?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2:2.*
2:2.9-1ubuntu2
2:2.9-1ubuntu3
2:2.9-1ubuntu4
2:2.9-1ubuntu4.1
2:2.9-1ubuntu4.2
2:2.9-1ubuntu4.3
2:2.9-1ubuntu4.4
2:2.9-1ubuntu4.6
Ubuntu:22.04:LTS
wpa
Package
- Name
- wpa
- Purl
- pkg:deb/ubuntu/wpa@2:2.10-6ubuntu2.3?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2:2.*
2:2.9.0-21build1
2:2.9.0-23
2:2.10-1
2:2.10-2
2:2.10-6
2:2.10-6ubuntu1
2:2.10-6ubuntu2
2:2.10-6ubuntu2.1
2:2.10-6ubuntu2.2
2:2.10-6ubuntu2.3
Ecosystem specific
{
"binaries": [
{
"binary_name": "eapoltest",
"binary_version": "2:2.10-6ubuntu2.3"
},
{
"binary_name": "hostapd",
"binary_version": "2:2.10-6ubuntu2.3"
},
{
"binary_name": "libwpa-client-dev",
"binary_version": "2:2.10-6ubuntu2.3"
},
{
"binary_name": "wpagui",
"binary_version": "2:2.10-6ubuntu2.3"
},
{
"binary_name": "wpasupplicant",
"binary_version": "2:2.10-6ubuntu2.3"
}
]
}Ubuntu:24.04:LTS
wpa
Package
- Name
- wpa
- Purl
- pkg:deb/ubuntu/wpa@2:2.10-21ubuntu0.3?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
2:2.*
2:2.10-15
2:2.10-18
2:2.10-20
2:2.10-21
2:2.10-21build2
2:2.10-21build3
2:2.10-21build4
2:2.10-21ubuntu0.1
2:2.10-21ubuntu0.2
2:2.10-21ubuntu0.3
Ecosystem specific
{
"binaries": [
{
"binary_name": "eapoltest",
"binary_version": "2:2.10-21ubuntu0.3"
},
{
"binary_name": "hostapd",
"binary_version": "2:2.10-21ubuntu0.3"
},
{
"binary_name": "libwpa-client-dev",
"binary_version": "2:2.10-21ubuntu0.3"
},
{
"binary_name": "wpagui",
"binary_version": "2:2.10-21ubuntu0.3"
},
{
"binary_name": "wpasupplicant",
"binary_version": "2:2.10-21ubuntu0.3"
}
]
}Ubuntu:25.04
wpa
Package
- Name
- wpa
- Purl
- pkg:deb/ubuntu/wpa@2:2.10-24ubuntu0.1?arch=source&distro=plucky
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "eapoltest",
"binary_version": "2:2.10-24ubuntu0.1"
},
{
"binary_name": "hostapd",
"binary_version": "2:2.10-24ubuntu0.1"
},
{
"binary_name": "libwpa-client-dev",
"binary_version": "2:2.10-24ubuntu0.1"
},
{
"binary_name": "wpagui",
"binary_version": "2:2.10-24ubuntu0.1"
},
{
"binary_name": "wpasupplicant",
"binary_version": "2:2.10-24ubuntu0.1"
}
]
}Ubuntu:25.10
wpa
Package
- Name
- wpa
- Purl
- pkg:deb/ubuntu/wpa@2:2.11-0ubuntu4?arch=source&distro=questing
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ecosystem specific
{
"binaries": [
{
"binary_name": "eapoltest",
"binary_version": "2:2.11-0ubuntu4"
},
{
"binary_name": "hostapd",
"binary_version": "2:2.11-0ubuntu4"
},
{
"binary_name": "libwpa-client-dev",
"binary_version": "2:2.11-0ubuntu4"
},
{
"binary_name": "wpagui",
"binary_version": "2:2.11-0ubuntu4"
},
{
"binary_name": "wpasupplicant",
"binary_version": "2:2.11-0ubuntu4"
}
]
}Ubuntu:Pro:14.04:LTS
wpa
Package
- Name
- wpa
- Purl
- pkg:deb/ubuntu/wpa@2.1-0ubuntu1.7+esm5?arch=source&distro=esm-infra-legacy/trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1.*
1.0-3ubuntu2
1.0-3ubuntu3
1.0-3ubuntu4
2.*
2.1-0ubuntu1
2.1-0ubuntu1.1
2.1-0ubuntu1.2
2.1-0ubuntu1.3
2.1-0ubuntu1.4
2.1-0ubuntu1.5
2.1-0ubuntu1.6
2.1-0ubuntu1.7
2.1-0ubuntu1.7+esm1
2.1-0ubuntu1.7+esm2
2.1-0ubuntu1.7+esm3
2.1-0ubuntu1.7+esm4
2.1-0ubuntu1.7+esm5