Certified Ethical Hacker (CEH v12) — Question 79

You are a penetration tester tasked with testing the wireless network of your client Brakeme SA. You are attempting to break into the wireless network with the SSID “Brakeme-Internal.” You realize that this network uses WPA3 encryption.
Which of the following vulnerabilities is the promising to exploit?

Answer options

• A. Cross-site request forgery
• B. Dragonblood
• C. Key reinstallation attack
• D. AP misconfiguration

Correct answer: B

Explanation

The Dragonblood vulnerability specifically affects WPA3 and has known exploits that can be leveraged to compromise the network. Cross-site request forgery and key reinstallation attacks are not directly related to WPA3, while AP misconfiguration pertains to setup errors rather than encryption weaknesses.