CVE-2026-23809
MAC Address Spoofing leads to Inter-BSSID Isolation Bypass Resulting in Traffic Redirection
A technique has been identified that adapts a known port-stealing method to Wi-Fi environments that use multiple BSSIDs. By leveraging the relationship between BSSIDs and their associated virtual ports, an attacker could potentially bypass inter-BSSID isolation controls. Successful exploitation may enable an attacker to redirect and intercept the victim's network traffic, potentially resulting in eavesdropping, session hijacking, or denial of service.
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Produtos afetados
Hewlett Packard Enterprise (HPE) · HPE Aruba Networking Wireless Operating System (AOS-10 & AOS-8)Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →