Lucene search
K

360 matches found

OSV
OSV
added 2024/02/22 5:15 p.m.0 views

UBUNTU-CVE-2023-52160

The implementation of PEAP in wpasupplicant through 2.10 allows authentication bypass. For a successful attack, wpasupplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eappeapdecrypt vulnerability can then be abused to skip Phase 2...

6.5CVSS6.8AI score0.01177EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/02/17 3:22 a.m.1 views

SUSE CVE-2023-52161

The Access Point functionality in eapolauthkeyhandle in eapol.c in iNet wireless daemon IWD before 2.14 allows attackers to gain unauthorized access to a protected Wi-Fi network. An attacker can complete the EAPOL handshake by skipping Msg2/4 and instead sending Msg4/4 with an all-zero key...

7.5CVSS7.1AI score0.01103EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2024/02/06 9:15 a.m.1 views

CVE-2023-4503

An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server...

7.5CVSS6.9AI score0.0072EPSS
Exploits0References7
OSV
OSV
added 2024/02/06 9:15 a.m.5 views

CVE-2023-4503

An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server...

7.5CVSS6.6AI score0.0072EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/12/04 6:1 p.m.2 views

eap-galleon: custom provisioning creates unsecured http-invoker

An improper initialization vulnerability was found in Galleon. When using Galleon to provision custom EAP or EAP-XP servers, the servers are created unsecured. This issue could allow an attacker to access remote HTTP services available from the server...

7.5CVSS5.8AI score0.0072EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2023/11/28 10:23 a.m.45 views

Hackers Can Exploit 'Forced Authentication' to Steal Windows NTLM Tokens

Cybersecurity researchers have discovered a case of "forced authentication" that could be exploited to leak a Windows user's NT LAN Manager NTLM tokens by tricking a victim into opening a specially crafted Microsoft Access file. The attack takes advantage of a legitimate feature in the database...

7.7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/11/17 12:0 a.m.7 views

The vulnerability of the Protected Extensible Authentication Protocol (PEAP) implementation in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Protected Extensible Authentication Protocol PEAP implementation in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted PEAP packets...

10CVSS8.4AI score0.02836EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/11/14 5:57 p.m.38 views

CVE-2023-36028 Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

...

9.8CVSS9.6AI score0.02836EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/11/14 5:57 p.m.9 views

CVE-2023-36028 Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

...

9.8CVSS7.2AI score0.02836EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.110 views

KB5032189: Windows 10 Version 21H2 / Windows 10 Version 22H2 Security Update (November 2023)

The remote Windows host is missing security update 5032189. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2023-36402 - Windows Pragmatic General Multicast PGM Remote Code Execution Vulnerability...

9.8CVSS7.1AI score0.88196EPSS
Exploits13References30
Positive Technologies
Positive Technologies
added 2023/11/14 12:0 a.m.4 views

PT-2023-6924 · Microsoft · Peap +1

Name of the Vulnerable Software and Affected Versions: Microsoft Protected Extensible Authentication Protocol PEAP affected versions not specified Description: The issue is related to insufficient input validation in the implementation of the Protected Extensible Authentication Protocol PEAP in...

9.8CVSS9.6AI score0.02836EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.133 views

KB5032197: Windows 10 Version 1607 and Windows Server 2016 Security Update (November 2023)

The remote Windows host is missing security update 5032197. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2023-36402 - Windows Pragmatic General Multicast PGM Remote Code Execution Vulnerability...

9.8CVSS7.2AI score0.88196EPSS
Exploits4References26
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.206 views

KB5032192: Windows 11 version 21H2 Security Update (November 2023)

The remote Windows host is missing security update 5032192. It is, therefore, affected by multiple vulnerabilities - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability CVE-2023-36402 - Windows Pragmatic General Multicast PGM Remote Code Execution Vulnerability...

9.8CVSS7.1AI score0.88196EPSS
Exploits14References34
RedHat Linux
RedHat Linux
added 2023/10/06 3:41 a.m.1 views

eap-7: heap exhaustion via deserialization

A flaw was found in EAP-7 during deserialization of certain classes, which permits instantiation of HashMap and HashTable with no checks on resources consumed. This issue could allow an attacker to submit malicious requests using these classes, which could eventually exhaust the heap and result i...

7.5CVSS5.8AI score0.00851EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/16 8:26 a.m.12 views

freeradius: Information leakage in EAP-PWD

In freeradius, the EAP-PWD function computepasswordelement leaks information about the password which allows an attacker to substantially reduce the size of an offline dictionary attack...

7.5CVSS5.8AI score0.0086EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2023/04/26 7:0 a.m.3 views

strongSwan 5.9.8 and 5.9.9 potentially allows remote code execution because it uses a variable named "public" for two different purposes within the same function. There is initially incorrect access control later followed by an expired pointer dereference. One attack vector is sending an untrusted client certificate during EAP-TLS. A server is affected only if it loads plugins that implement TLS-based EAP methods (EAP-TLS EAP-TTLS EAP-PEAP or EAP-TNC). This is fixed in 5.9.10.

...

9.8CVSS9.3AI score0.02264EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/04/20 12:0 a.m.6 views

The vulnerability of strongSwan demon, related to errors in certificate verification in EAP methods based on TLS, allows a perpetrator to perform a denial-of-service attack.

The vulnerability of strongSwan is related to errors in certificate verification during EAP methods based on TLS. Exploiting this vulnerability allows a remote attacker to perform a denial-of-service attack...

7.8CVSS7.8AI score0.02264EPSS
Exploits0References5Affected Software3
CNNVD
CNNVD
added 2023/04/15 12:0 a.m.5 views

strongSwan 信任管理问题漏洞

strongSwan is a Swiss Andreas Steffen personal developer of a Linux platform to use the open source IPsec-based VPN solution. The solution includes authentication mechanisms such as X.509 public key certificates, securely stored private keys, and smart cards. A security vulnerability exists in...

9.8CVSS8.7AI score0.02264EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/03/27 12:0 a.m.3 views

PT-2023-21616 · Apple · Macos Monterey +4

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 macOS Monterey versions prior to 12.6.4 macOS Big Sur versions prior to 11.7.5 iOS versions prior to 16.4 iOS versions prior to 15.7.4 iPadOS versions prior to 16.4 iPadOS versions prior to 15.7.4 Description: The...

6.5CVSS6.7AI score0.00712EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2023/03/06 12:0 a.m.5 views

The vulnerability of the NTLM network authentication protocol for Windows operating systems allows attackers to circumvent security restrictions and gain increased privileges.

The vulnerability of the NTLM network authentication protocol for Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to circumvent security restrictions and enhance their privileges...

7.8CVSS7.3AI score0.02517EPSS
Exploits1References6
Rows per page
Query Builder