EUVD-2026-16717

AVideo: IDOR in uploadPoster.php Allows Any Authenticated User to Overwrite Scheduled Live Stream Posters and Trigger False Socket Notifications...

WWBN AVideo 安全漏洞

WWBN AVideo is a video platform building system developed by the WWBN team using PHP. Versions of WWBN AVideo prior to 26.0 contained security vulnerabilities. These vulnerabilities stemmed from a lack of ownership checks on the plugin/Live/uploadPoster.php endpoint, which could allow authenticat...

EUVD-2015-8601

Malware in sbrugna...

CVE-2024-47128

The goTenna Pro App encryption key name is always sent unencrypted when the key is shared over RF through a broadcast message. It is advised to share the encryption key via local QR for higher security operations...

CVE-2024-47128

The CVE-2024-47128 issue affects goTenna Pro/Pro X series apps. The root cause is that the encryption key name is broadcast unencrypted over RF, potentially exposing sensitive information. Documented impact centers on confidentiality risk to broadcasted data, with remediation guidance to share ke...

goTenna Pro ATAK Plugin 安全漏洞

The goTenna Pro ATAK Plugin is a plugin for goTenna's device that creates a network for off-grid communication and situational awareness. A security vulnerability exists in goTenna Pro ATAK Plugin versions 1.9.12 and earlier, which stems from a broadcast key name that is always sent in plaintext,...

goTenna Pro 安全漏洞

goTenna Pro is a series of devices from goTenna that can create networks for off-grid communications and situational awareness. A security vulnerability exists in goTenna Pro that stems from a broadcast key name that is consistently sent in unencrypted form and could disclose the operational...

SUSE CVE-2015-8724

The AirPDcapDecryptWPABroadcastKey function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not verify the WPA broadcast key length, which allows remote attackers to cause a denial of service out-of-bounds read and application crash v...

Wireshark 802.11 Parser Denial of Service Vulnerability (CNVD-2016-00055)

Wireshark is the most popular network protocol parser. Wireshark version 2.0.x prior to 2.0.1 and version 1.12.x prior to 1.12.9, the function AirPDcapDecryptWPABroadcastKey within epan/crypt/airpdcap.c in the 802.11 parser fails to validate the length of the WPA broadcast key, and by constructin...

DEBIAN-CVE-2015-8724

The AirPDcapDecryptWPABroadcastKey function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not verify the WPA broadcast key length, which allows remote attackers to cause a denial of service out-of-bounds read and application crash v...

UBUNTU-CVE-2015-8724

The AirPDcapDecryptWPABroadcastKey function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not verify the WPA broadcast key length, which allows remote attackers to cause a denial of service out-of-bounds read and application crash v...

CVE-2015-8724

CVE-2015-8724 affects Wireshark’s 802.11 dissector: the AirPDcapDecryptWPABroadcastKey function in epan/crypt/airpdcap.c does not verify the WPA broadcast key length. This can be exploited by a crafted packet to cause an out-of-bounds read and application crash (DoS). Affected releases include Wi...