The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.
総合評価: CVE-2020-24588 は悪用リスクが高い(62.8/100)。CVSS 深刻度は低。悪用される可能性が高い(EPSS 3.54%、88 パーセンタイル) 根拠: 公開エクスプロイトが 1 件参照されています(Exploit-DB)。 直近 1 日で EPSS が +3.13% 上昇。悪用への関心が高まっている可能性があります。 推奨対応: 公開エクスプロイトが確認されています。影響範囲の確認、緩和策の適用、パッチ適用を優先してください。
リスクは変動します。再評価に基づき、本ページの表示内容を更新しています。
| EDB-ID | ソース | 種別 | 公開 | リンク |
|---|---|---|---|---|
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS は日次で悪用されやすさの相対度合いを推定します。パーセンタイルは採点済み CVE の中での相対位置(高いほど相対的に深刻)を示します。
| # | 日付 | 旧 EPSS スコア | 新 EPSS スコア | Δ(新 − 旧) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.40% | 3.54% | +3.13% |
| 2 | 2026-05-24 | 0.34% | 0.40% | +0.07% |
| 3 | 2026-03-04 | — | 0.34% | — |
EPSS の全履歴 (全 56 件)
この CVE の CVSS 指標。
| ベーススコア | バージョン | 深刻度 | ベクトル | 悪用しやすさ | 影響 | スコアの出典 |
|---|---|---|---|---|---|---|
| 3.5 | 3.1 | LOW |
|
2.1 | 1.4 | [email protected] |
| 2.9 | 2.0 | LOW |
|
5.5 | 2.9 | [email protected] |
| vendor | priority | summary | link |
|---|---|---|---|
debian
|
not yet assigned | CVE-2020-24588 not yet assigned priority: Debian including 2 source packages (firmware-nonfree, linux), 10 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 9, open 1. | https://security-tracker.debian.org/tracker/CVE-2020-24588 |
redhat
|
medium | — | https://access.redhat.com/security/cve/CVE-2020-24588 |
suse
|
medium | CVE-2020-24588 severity moderate: SUSE including 764 source package names (0.45.0.7.7.1:kernel-kvmsmall-5.3.18-59.5.2, 2.0.2-3.2.23:kernel-rt-5.14.21-150500.13.5.1, …), 1481 product×package rows across 250 product lines (Container rancher/elemental-teal-rt/5.3, Container rancher/elemental-teal-rt/5.4, … (250 product lines)): Fixed 1430, Known Affected 48, Known Not Affected 3. | https://www.suse.com/security/cve/CVE-2020-24588/ |
ubuntu
|
medium | CVE-2020-24588 medium priority: Ubuntu including 169 source packages (linux, linux-allwinner, …), 2181 status rows across 16 suites (bionic, focal, groovy, hirsute, impish, jammy, kinetic, lunar, mantic, noble, oracular, plucky, questing, trusty, upstream, xenial): DNE 1696, released 218, not-affected 217, ignored 45, needed 5. | https://ubuntu.com/security/CVE-2020-24588 |
| ベンダー | 製品 | バージョン | 生の CPE |
|---|---|---|---|
| ieee | ieee_802.11 | — | cpe:2.3:a:ieee:ieee_802.11:*:*:*:*:*:*:*:* |
| linux | mac80211 | — | cpe:2.3:a:linux:mac80211:-:*:*:*:*:*:*:* |
| microsoft | windows_10 | — | cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:* |
| microsoft | windows_10 | 20h2 | cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:* |
| microsoft | windows_10 | 1607 | cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:* |
| microsoft | windows_10 | 1803 | cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:* |
| microsoft | windows_10 | 1809 | cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:* |
| microsoft | windows_10 | 1909 | cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:* |
| microsoft | windows_10 | 2004 | cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:* |
| microsoft | windows_7 | — | cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:* |
| microsoft | windows_8.1 | — | cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:* |
| microsoft | windows_rt_8.1 | — | cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:* |
| microsoft | windows_server_2008 | — | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:* |
| microsoft | windows_server_2008 | r2 | cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:* |
| microsoft | windows_server_2012 | — | cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* |
| microsoft | windows_server_2012 | — | cpe:2.3:o:microsoft:windows_server_2012:-:r2:*:*:*:*:*:* |
| microsoft | windows_server_2016 | — | cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:* |
| microsoft | windows_server_2016 | 2004 | cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:* |
| microsoft | windows_server_2019 | — | cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:* |
| debian | debian_linux | 9.0 | cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* |
| siemens | scalance_w1748-1_firmware | — | cpe:2.3:o:siemens:scalance_w1748-1_firmware:-:*:*:*:*:*:m12:* |
| siemens | scalance_w1750d_firmware | — | cpe:2.3:o:siemens:scalance_w1750d_firmware:-:*:*:*:*:*:*:* |
| siemens | scalance_w1788-1_firmware | — | cpe:2.3:o:siemens:scalance_w1788-1_firmware:-:*:*:*:*:*:m12:* |
| siemens | scalance_w1788-2_firmware | — | cpe:2.3:o:siemens:scalance_w1788-2_firmware:-:*:*:*:*:*:eec_m12:* |
| siemens | scalance_w1788-2_firmware | — | cpe:2.3:o:siemens:scalance_w1788-2_firmware:-:*:*:*:*:*:m12:* |
| siemens | scalance_w1788-2ia_firmware | — | cpe:2.3:o:siemens:scalance_w1788-2ia_firmware:-:*:*:*:*:*:m12:* |
| siemens | scalance_w721-1_firmware | — | cpe:2.3:o:siemens:scalance_w721-1_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_w722-1_firmware | — | cpe:2.3:o:siemens:scalance_w722-1_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_w734-1_firmware | — | cpe:2.3:o:siemens:scalance_w734-1_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_w738-1_firmware | — | cpe:2.3:o:siemens:scalance_w738-1_firmware:-:*:*:*:*:*:m12:* |
| siemens | scalance_w748-1_firmware | — | cpe:2.3:o:siemens:scalance_w748-1_firmware:-:*:*:*:*:*:m12:* |
| siemens | scalance_w748-1_firmware | — | cpe:2.3:o:siemens:scalance_w748-1_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_w761-1_firmware | — | cpe:2.3:o:siemens:scalance_w761-1_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_w774-1_firmware | — | cpe:2.3:o:siemens:scalance_w774-1_firmware:-:*:*:*:*:*:m12_eec:* |
| siemens | scalance_w774-1_firmware | — | cpe:2.3:o:siemens:scalance_w774-1_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_w778-1_firmware | — | cpe:2.3:o:siemens:scalance_w778-1_firmware:-:*:*:*:*:*:m12:* |
| siemens | scalance_w778-1_firmware | — | cpe:2.3:o:siemens:scalance_w778-1_firmware:-:*:*:*:*:*:m12_eec:* |
| siemens | scalance_w786-1_firmware | — | cpe:2.3:o:siemens:scalance_w786-1_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_w786-2_firmware | — | cpe:2.3:o:siemens:scalance_w786-2_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_w786-2_firmware | — | cpe:2.3:o:siemens:scalance_w786-2_firmware:-:*:*:*:*:*:sfp:* |
| siemens | scalance_w786-2ia_firmware | — | cpe:2.3:o:siemens:scalance_w786-2ia_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_w788-1_firmware | — | cpe:2.3:o:siemens:scalance_w788-1_firmware:-:*:*:*:*:*:m12:* |
| siemens | scalance_w788-1_firmware | — | cpe:2.3:o:siemens:scalance_w788-1_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_w788-2_firmware | — | cpe:2.3:o:siemens:scalance_w788-2_firmware:-:*:*:*:*:*:m12:* |
| siemens | scalance_w788-2_firmware | — | cpe:2.3:o:siemens:scalance_w788-2_firmware:-:*:*:*:*:*:m12_eec:* |
| siemens | scalance_w788-2_firmware | — | cpe:2.3:o:siemens:scalance_w788-2_firmware:-:*:*:*:*:*:rj45:* |
| siemens | scalance_wam763-1_firmware | — | cpe:2.3:o:siemens:scalance_wam763-1_firmware:-:*:*:*:*:*:*:* |
| siemens | scalance_wam766-1_firmware | — | cpe:2.3:o:siemens:scalance_wam766-1_firmware:-:*:*:*:*:*:*:* |
| siemens | scalance_wam766-1_firmware | — | cpe:2.3:o:siemens:scalance_wam766-1_firmware:-:*:*:*:*:*:eec:* |
| siemens | scalance_wam766-1_6ghz_firmware | — | cpe:2.3:o:siemens:scalance_wam766-1_6ghz_firmware:-:*:*:*:*:*:*:* |
| siemens | scalance_wam766-1_6ghz_firmware | — | cpe:2.3:o:siemens:scalance_wam766-1_6ghz_firmware:-:*:*:*:*:*:eec:* |
| siemens | scalance_wum763-1_firmware | — | cpe:2.3:o:siemens:scalance_wum763-1_firmware:-:*:*:*:*:*:*:* |
| siemens | scalance_wum766-1_firmware | — | cpe:2.3:o:siemens:scalance_wum766-1_firmware:-:*:*:*:*:*:*:* |
| siemens | scalance_wum766-1_6ghz_firmware | — | cpe:2.3:o:siemens:scalance_wum766-1_6ghz_firmware:-:*:*:*:*:*:*:* |
| arista | c-100_firmware | — | cpe:2.3:o:arista:c-100_firmware:-:*:*:*:*:*:*:* |
| arista | c-110_firmware | — | cpe:2.3:o:arista:c-110_firmware:-:*:*:*:*:*:*:* |
| arista | c-120_firmware | — | cpe:2.3:o:arista:c-120_firmware:-:*:*:*:*:*:*:* |
| arista | c-130_firmware | — | cpe:2.3:o:arista:c-130_firmware:-:*:*:*:*:*:*:* |
| arista | c-200_firmware | — | cpe:2.3:o:arista:c-200_firmware:-:*:*:*:*:*:*:* |
| arista | c-230_firmware | — | cpe:2.3:o:arista:c-230_firmware:-:*:*:*:*:*:*:* |
| arista | c-235_firmware | — | cpe:2.3:o:arista:c-235_firmware:-:*:*:*:*:*:*:* |
| arista | c-250_firmware | — | cpe:2.3:o:arista:c-250_firmware:-:*:*:*:*:*:*:* |
| arista | c-260_firmware | — | cpe:2.3:o:arista:c-260_firmware:-:*:*:*:*:*:*:* |
| arista | c-65_firmware | — | cpe:2.3:o:arista:c-65_firmware:-:*:*:*:*:*:*:* |
| arista | c-75_firmware | — | cpe:2.3:o:arista:c-75_firmware:-:*:*:*:*:*:*:* |
| arista | o-105_firmware | — | cpe:2.3:o:arista:o-105_firmware:-:*:*:*:*:*:*:* |
| arista | o-90_firmware | — | cpe:2.3:o:arista:o-90_firmware:-:*:*:*:*:*:*:* |
| arista | w-118_firmware | — | cpe:2.3:o:arista:w-118_firmware:-:*:*:*:*:*:*:* |
| arista | w-68_firmware | — | cpe:2.3:o:arista:w-68_firmware:-:*:*:*:*:*:*:* |
| cisco | 1100_firmware | — | cpe:2.3:o:cisco:1100_firmware:-:*:*:*:*:*:*:* |
| cisco | 1100-4p_firmware | — | cpe:2.3:o:cisco:1100-4p_firmware:-:*:*:*:*:*:*:* |
| cisco | 1100-8p_firmware | — | cpe:2.3:o:cisco:1100-8p_firmware:-:*:*:*:*:*:*:* |
| cisco | 1101-4p_firmware | — | cpe:2.3:o:cisco:1101-4p_firmware:-:*:*:*:*:*:*:* |
| cisco | 1109-2p_firmware | — | cpe:2.3:o:cisco:1109-2p_firmware:-:*:*:*:*:*:*:* |
| cisco | 1109-4p_firmware | — | cpe:2.3:o:cisco:1109-4p_firmware:-:*:*:*:*:*:*:* |
| cisco | aironet_1532_firmware | — | cpe:2.3:o:cisco:aironet_1532_firmware:-:*:*:*:*:*:*:* |
| cisco | aironet_1542d_firmware | — | cpe:2.3:o:cisco:aironet_1542d_firmware:-:*:*:*:*:*:*:* |
| cisco | aironet_1542i_firmware | — | cpe:2.3:o:cisco:aironet_1542i_firmware:-:*:*:*:*:*:*:* |
| cisco | aironet_1800_firmware | — | cpe:2.3:o:cisco:aironet_1800_firmware:-:*:*:*:*:*:*:* |
| cisco | aironet_1800i_firmware | — | cpe:2.3:o:cisco:aironet_1800i_firmware:-:*:*:*:*:*:*:* |