84 matches found
CVE-2023-28584 Improper Authorization in WLAN Host
Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement CSA...
PT-2023-21831 · Qualcomm · Qualcomm Aqt1000
Name of the Vulnerable Software and Affected Versions: Qualcomm AQT1000 affected versions not specified Description: The issue is related to a Transient Denial of Service DOS in the WLAN Host. This occurs when a mobile station receives an invalid channel in the Channel Switch Announcement CSA...
PT-2023-24142 · Wlan Host · Wlan Host
Name of the Vulnerable Software and Affected Versions: WLAN Host affected versions not specified Description: The issue is related to a Transient Denial of Service DOS in the WLAN Host when a mobile station receives an invalid channel in the Channel Switch Announcement CSA Information Element IE...
PT-2023-24144 · Wlan Host · Wlan Host
Name of the Vulnerable Software and Affected Versions: WLAN Host affected versions not specified Description: The issue is related to a Transient Denial of Service DOS in the WLAN Host. This occurs when an invalid channel, such as a channel out of range, is received in the Station STA during a...
Stable Channel Update for ChromeOS / ChromeOS Flex
ChromeOS M115 Stable The Stable channel is being updated to OS version: 15474.61.0 Browser version: 115.0.5790.131 for most ChromeOS devices. If you find new issues, please let us know one of the following ways 1. File a bug 2. Visit our ChromeOS communities 1. General: Chromebook Help Community ...
kernel: wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected When we are not connected to a channel, sending channel "switch" announcement doesn't make any sense. The BSS list is empty in that case. This causes the fo...
kernel: wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected When we are not connected to a channel, sending channel "switch" announcement doesn't make any sense. The BSS list is empty in that case. This causes the fo...
SUSE CVE-2006-7179
ieee80211input.c in MadWifi before 0.9.3 does not properly process Channel Switch Announcement Information Elements CSA IEs, which allows remote attackers to cause a denial of service loss of communication via a Channel Switch Count less than or equal to one, triggering a channel change...
GSD-2022-1005183 wifi: cfg80211: handle IBSS in channel switch
wifi: cfg80211: handle IBSS in channel switch This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...
CVE-2021-1903
Possible denial of service scenario can occur due to lack of length check on Channel Switch Announcement IE in beacon or probe response frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industri...
CVE-2021-1903
Possible denial of service scenario can occur due to lack of length check on Channel Switch Announcement IE in beacon or probe response frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industri...
多款Qualcomm产品授权问题漏洞
The Qualcomm QCA6574AU and others are products of Qualcomm Incorporated Qualcomm, U.S.A. The QCA6574AU is a central processing unit CPU product.The SD 636 is a central processing unit CPU product.The SDM630 is a central processing unit CPU product.The SDM630 is a central processing unit CPU...
CVE-2021-34173
An attacker can cause a Denial of Service and kernel panic in v4.2 and earlier versions of Espressif esp32 via a malformed beacon csa frame. The device requires a reboot to recover...
CVE-2020-5218 Ability in Sylius to switch channels via GET parameter enabled in production environments
Affected versions of Sylius give attackers the ability to switch channels via the channelcode GET parameter in production environments. This was meant to be enabled only when kernel.debug is set to true. However, if no syliuschannel.debug is set explicitly in the configuration, the default value...
Security Bulletin: Vulnerabilities in OpenSSL affect multiple products shipped with Intelligent Cluster. (CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470)
Summary Information about security vulnerabilities affecting multiple products shipped as components of Intelligent Cluster has been published in security bulletins. Vulnerability Details Abstract Information about security vulnerabilities affecting multiple products shipped as components of...
openSUSE Security Update : hostapd (openSUSE-2017-1201) (KRACK)
This update for hostapd fixes the following issues : - Fix KRACK attacks on the AP side boo1063479, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13087, CVE-2017-13088 : Hostap was updated to upstream release 2.6 - fixed EAP-pwd last fragment validation...
SNMP Default Group Name Vulnerability in Fibre Channel Switch SW200 Devices
This product is a Fibre Channel switch. An SNMP default group name vulnerability exists in the Fibre Channel Switch SW200 device. An attacker can exploit the vulnerability to obtain sensitive system information, posing information leakage and operational security risks...
BSA-2016-134
Security Advisory ID : BSA-2016-134 Component : Crypto Revision : 2.0: Final The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which makes it easier for remote attackers to...
Cisco ONS Control Card远程拒绝服务漏洞
BUGTRAQ ID: 33261 CVE ID:CVE-2008-3818 CNCVE ID:CNCVE-20083818 Cisco 15310-CL, 15310-MA, ONS 15327, ONS 15454, ONS 15454 SDH和ONS 15600硬件通过CTX, CTX2500, XTC, TCC/TCC+/TCC2/TCC2P, TCCi/TCC2/TCC2P和TSC控制卡管理,这些控制卡通常连接数据通信网络DCN,DCN用于在管理端点和网络实体进行管理信息传送。DCN的定义有时又叫为Management Communication Network...
Mandrake Linux Security Advisory : madwifi-source (MDKSA-2007:082)
The athratesample function in the athrate/sample/sample.c sample code in MadWifi before 0.9.3 allows remote attackers to cause a denial of service failed KASSERT and system crash by moving a connected system to a location with low signal strength, and possibly other vectors related to a race...