CVE-2017-13086

Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Tunneled Direct-Link Setup (TDLS) Peer Key (TPK) during the TDLS handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.

Published: Oct 17, 2017
Updated: Nov 9, 2025
CVE: CVE-2017-13086
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.4
AV:A/AC:M/Au:N/C:P/I:P/A:P

CWEs:

Affected Software
References

Software	From	Fixed in
debian / debian_linux	8.0	8.0.x
freebsd / freebsd	-	-
canonical / ubuntu_linux	16.04	16.04.x
canonical / ubuntu_linux	14.04	14.04.x
canonical / ubuntu_linux	17.04	17.04.x
debian / debian_linux	9.0	9.0.x
opensuse / leap	42.3	42.3.x
opensuse / leap	42.2	42.2.x
redhat / enterprise_linux_server	7	7.x
redhat / enterprise_linux_desktop	7	7.x
freebsd / freebsd	11	11.x
freebsd / freebsd	11.1	11.1.x
freebsd / freebsd	10	10.x
freebsd / freebsd	10.4	10.4.x
w1.fi / hostapd	1.1	1.1.x
w1.fi / hostapd	2.4	2.4.x
w1.fi / hostapd	2.0	2.0.x
w1.fi / hostapd	0.7.3	0.7.3.x
w1.fi / wpa_supplicant	2.3	2.3.x
w1.fi / wpa_supplicant	2.1	2.1.x
w1.fi / wpa_supplicant	2.2	2.2.x
w1.fi / hostapd	1.0	1.0.x
w1.fi / wpa_supplicant	1.0	1.0.x
w1.fi / wpa_supplicant	2.4	2.4.x
w1.fi / hostapd	2.3	2.3.x
w1.fi / hostapd	2.5	2.5.x
w1.fi / wpa_supplicant	0.7.3	0.7.3.x
w1.fi / wpa_supplicant	1.1	1.1.x
w1.fi / hostapd	2.2	2.2.x
w1.fi / hostapd	2.1	2.1.x
w1.fi / wpa_supplicant	2.0	2.0.x
w1.fi / hostapd	2.6	2.6.x
w1.fi / hostapd	0.6.10	0.6.10.x
w1.fi / hostapd	0.6.9	0.6.9.x
w1.fi / hostapd	0.6.8	0.6.8.x
w1.fi / hostapd	0.5.11	0.5.11.x
w1.fi / hostapd	0.5.10	0.5.10.x
w1.fi / hostapd	0.5.9	0.5.9.x
w1.fi / hostapd	0.5.8	0.5.8.x
w1.fi / hostapd	0.5.7	0.5.7.x
w1.fi / hostapd	0.4.11	0.4.11.x
w1.fi / hostapd	0.4.10	0.4.10.x
w1.fi / hostapd	0.4.9	0.4.9.x
w1.fi / hostapd	0.4.8	0.4.8.x
w1.fi / hostapd	0.4.7	0.4.7.x
w1.fi / hostapd	0.3.11	0.3.11.x
w1.fi / hostapd	0.3.10	0.3.10.x
w1.fi / hostapd	0.3.9	0.3.9.x
w1.fi / hostapd	0.3.7	0.3.7.x
w1.fi / hostapd	0.2.8	0.2.8.x
w1.fi / hostapd	0.2.6	0.2.6.x
w1.fi / hostapd	0.2.5	0.2.5.x
w1.fi / hostapd	0.2.4	0.2.4.x
w1.fi / wpa_supplicant	2.6	2.6.x
w1.fi / wpa_supplicant	2.5	2.5.x
w1.fi / wpa_supplicant	0.6.10	0.6.10.x
w1.fi / wpa_supplicant	0.6.9	0.6.9.x
w1.fi / wpa_supplicant	0.6.8	0.6.8.x
w1.fi / wpa_supplicant	0.5.11	0.5.11.x
w1.fi / wpa_supplicant	0.5.10	0.5.10.x
w1.fi / wpa_supplicant	0.5.9	0.5.9.x
w1.fi / wpa_supplicant	0.5.8	0.5.8.x
w1.fi / wpa_supplicant	0.5.7	0.5.7.x
w1.fi / wpa_supplicant	0.4.11	0.4.11.x
w1.fi / wpa_supplicant	0.4.10	0.4.10.x
w1.fi / wpa_supplicant	0.4.9	0.4.9.x
w1.fi / wpa_supplicant	0.4.8	0.4.8.x
w1.fi / wpa_supplicant	0.4.7	0.4.7.x
w1.fi / wpa_supplicant	0.3.11	0.3.11.x
w1.fi / wpa_supplicant	0.3.10	0.3.10.x
w1.fi / wpa_supplicant	0.3.9	0.3.9.x
w1.fi / wpa_supplicant	0.3.8	0.3.8.x
w1.fi / wpa_supplicant	0.3.7	0.3.7.x
w1.fi / wpa_supplicant	0.2.8	0.2.8.x
w1.fi / wpa_supplicant	0.2.7	0.2.7.x
w1.fi / wpa_supplicant	0.2.6	0.2.6.x
w1.fi / wpa_supplicant	0.2.5	0.2.5.x
w1.fi / wpa_supplicant	0.2.4	0.2.4.x
suse / linux_enterprise_server	11-sp4	11-sp4.x
suse / linux_enterprise_desktop	12-sp2	12-sp2.x
suse / openstack_cloud	6	6.x
suse / linux_enterprise_desktop	12-sp3	12-sp3.x
suse / linux_enterprise_server	12	12.x
suse / linux_enterprise_point_of_sale	11-sp3	11-sp3.x
suse / linux_enterprise_server	11-sp3	11-sp3.x

Vulnerability Database

300,445

CVE-2017-13086

Deep Security Visibility Without the Complexity