CVE-2025-27558

CVSS v2.0

9.4

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:N

Name of the Vulnerable Software and Affected Versions IEEE P802.11-REVme versions D1.1 through D7.0

Description The issue allows FragAttacks against mesh networks using Wi-Fi Protected Access (WPA, WPA2, or WPA3) or Wired Equivalent Privacy (WEP). An adversary can exploit this to inject arbitrary frames towards devices that support receiving non-SSP A-MSDU frames. This problem exists because of an incorrect fix for a previous issue.

Recommendations For IEEE P802.11-REVme versions D1.1 through D7.0, consider disabling the reception of non-SSP A-MSDU frames as a temporary workaround until a patch is available. Restrict access to mesh networks using WPA, WPA2, WPA3, or WEP to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Insufficient Verification of Data Authenticity

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-345

Related Identifiers

BDU:2025-15558

CVE-2025-27558

DLA-4328-1

DSA-5973-1

DSA-5975-1

ECHO-C886-FD04-A91B

OESA-2026-2172

OESA-2026-2175

OESA-2026-2176

Affected Products

Debian

Ieee P802.11-Revme

CVE-2025-27558

Weakness Enumeration

Related Identifiers

Affected Products

References · 53