Lucene search
K

83 matches found

Positive Technologies
Positive Technologies
added 2025/02/11 12:0 a.m.5 views

PT-2025-6257 · Fortinet · Fortios

Name of the Vulnerable Software and Affected Versions: FortiOS versions 7.2.4 through 7.2.8 FortiOS versions 7.4.0 through 7.4.4 Description: A stack-based buffer overflow vulnerability in the implementation of the Control and Provisioning of Wireless Access Points CAPWAP protocol in FortiOS is...

8.1CVSS8.5AI score0.00938EPSS
Exploits0References13
OSV
OSV
added 2023/07/17 6:15 p.m.4 views

CVE-2023-34140

A buffer overflow vulnerability in the Zyxel ATP series firmware versions 4.32 through 5.36 Patch 2, USG FLEX series firmware versions 4.50 through 5.36 Patch 2, USG FLEX 50W series firmware versions 4.16 through 5.36 Patch 2, USG20W-VPN series firmware versions 4.16 through 5.36 Patch 2, VPN...

6.5CVSS6.1AI score0.00268EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/07/17 12:0 a.m.5 views

Zyxel ATP 安全漏洞

Zyxel ATP is a firewall from Zyxel China. A security vulnerability exists in Zyxel ATP ZLD versions V4.32 through V5.36 Patch 2, USG FLEX ZLD versions V4.50 through V5.36 Patch 2, USG FLEX 50W / USG20W-VPN ZLD versions V4.16 through V5.36 Patch 2, VPN ZLD versions V4.30 through V5.36. A security...

6.5CVSS6.5AI score0.00268EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/07/15 2:15 a.m.2 views

CVE-2023-35802

IQ Engine before 10.6r1 on Extreme Network AP devices has a Buffer Overflow in the implementation of the CAPWAP protocol that may be exploited to obtain elevated privileges to conduct remote code execution. Access to the internal management interface/subnet is required to conduct the exploit...

9.8CVSS5.9AI score0.00904EPSS
Exploits0References2
NVD
NVD
added 2023/07/15 2:15 a.m.16 views

CVE-2023-35802

IQ Engine before 10.6r1 on Extreme Network AP devices has a Buffer Overflow in the implementation of the CAPWAP protocol that may be exploited to obtain elevated privileges to conduct remote code execution. Access to the internal management interface/subnet is required to conduct the exploit...

9.8CVSS0.00904EPSS
Exploits0References1
Prion
Prion
added 2023/07/15 2:15 a.m.25 views

Buffer overflow

IQ Engine before 10.6r1 on Extreme Network AP devices has a Buffer Overflow in the implementation of the CAPWAP protocol that may be exploited to obtain elevated privileges to conduct remote code execution. Access to the internal management interface/subnet is required to conduct the exploit...

7.5CVSS9.6AI score0.00904EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/15 12:0 a.m.6 views

PT-2023-25324 · Extreme Networks · Iq Engine

Name of the Vulnerable Software and Affected Versions: Extreme Network AP devices IQ Engine versions prior to 10.6r1 Description: The issue is related to a Buffer Overflow in the implementation of the CAPWAP protocol. This may be exploited to obtain elevated privileges and conduct remote code...

9.8CVSS9.6AI score0.00904EPSS
Exploits0References4
CVE
CVE
added 2023/07/15 12:0 a.m.57 views

CVE-2023-35802

CVE-2023-35802 affects Extreme Networks IQ Engine prior to version 10.6r1 on Extreme Network AP devices. It is a Buffer Overflow in the CAPWAP protocol implementation that can allow an attacker with access to the internal management interface/subnet to obtain elevated privileges and perform remot...

9.8CVSS9.7AI score0.00904EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/03/23 5:15 p.m.19 views

Design/Logic Flaw

A vulnerability in the access point AP joining process of the Control and Provisioning of Wireless Access Points CAPWAP protocol of Cisco IOS XE Software for Wireless LAN Controllers WLCs could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected...

2.6CVSS6.7AI score0.00775EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2023/03/22 4:0 p.m.43 views

Cisco IOS XE Software for Wireless LAN Controllers CAPWAP Join Denial of Service Vulnerability

A vulnerability in the access point AP joining process of the Control and Provisioning of Wireless Access Points CAPWAP protocol of Cisco IOS XE Software for Wireless LAN Controllers WLCs could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected...

6.8CVSS6.7AI score0.00775EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/03/22 12:0 a.m.4 views

PT-2023-2267 · Cisco · Cisco Ios Xe

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software for Wireless LAN Controllers WLCs affected versions not specified Description: A vulnerability in the access point AP joining process of the Control and Provisioning of Wireless Access Points CAPWAP protocol could allow ...

6.8CVSS6.7AI score0.00775EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/04/13 11:0 p.m.6 views

CVE-2022-20682

A vulnerability in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This...

8.6CVSS6.8AI score0.01293EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/01/10 12:0 a.m.9 views

The vulnerability of the implementation of the Control Point and Wireless Access Point Provisioning Protocol (CAPWAP) in the Cisco IOS XE operating system allows a attacker to trigger a service failure.

The vulnerability of the CAPWAP management protocol implementation and wireless access point provisioning in Cisco IOS XE operating systems is related to insufficient validation of CAPWAP packets. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

8.6CVSS7.6AI score0.01248EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2021/09/23 3:15 a.m.23 views

CVE-2021-34769

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected...

8.6CVSS0.01346EPSS
Exploits0References1
OSV
OSV
added 2021/09/23 3:15 a.m.2 views

CVE-2021-34770

A vulnerability in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to execute arbitrary code with administrative privileges or cause a...

9.8CVSS6.1AI score0.0287EPSS
Exploits0References1
NVD
NVD
added 2021/09/23 3:15 a.m.17 views

CVE-2021-1565

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected...

8.6CVSS0.01248EPSS
Exploits0References1
Prion
Prion
added 2021/09/23 3:15 a.m.23 views

Input validation

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected...

5CVSS8.4AI score0.01248EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2021/09/23 3:15 a.m.16 views

Input validation

A vulnerability in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to execute arbitrary code with administrative privileges or cause a...

9CVSS7.5AI score0.0287EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/09/23 3:15 a.m.21 views

Input validation

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected...

7.8CVSS7.5AI score0.01346EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/09/23 3:15 a.m.15 views

Input validation

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected...

7.8CVSS7.5AI score0.01346EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder