Three design and multiple implementation flaws have been disclosed in IEEE 802.11 technical standard. They undergirds Wi-Fi, potentially enabling an adversary to take control over a system and plunder confidential data. The vulnerabilities have do with the way the standard fragments and aggregates frames, allowing threat actors to inject arbitrary packets and trick a victim into using a malicious DNS server, or forge the frames to siphon data. Security academic Mathy Vanhoef, a security academic at New York University Abu Dhabi, said the flaws stem from “widespread” programming mistakes.
Source: https://thehackernews.com/2021/05/nearly-all-wifi-devices-are-vulnerable.html