ALPINE-CVE-2019-9499

The implementations of EAP-PWD in wpasupplicant EAP Peer, when built against a crypto library missing explicit validation on imported elements, do not validate the scalar and element values in EAP-pwd-Commit. An attacker may complete authentication, session key and control of the data connection...

DEBIAN-CVE-2019-9497

The implementations of EAP-PWD in hostapd EAP Server and wpasupplicant EAP Peer do not validate the scalar and element values in EAP-pwd-Commit. This vulnerability may allow an attacker to complete EAP-PWD authentication without knowing the password. However, unless the crypto library does not...

ALPINE-CVE-2019-9497

The implementations of EAP-PWD in hostapd EAP Server and wpasupplicant EAP Peer do not validate the scalar and element values in EAP-pwd-Commit. This vulnerability may allow an attacker to complete EAP-PWD authentication without knowing the password. However, unless the crypto library does not...

Cisco NX-OS Denial of Service Vulnerability

Cisco NX-OS is a set of data center-grade operating system software used by switches. A denial of service vulnerability exists in Cisco NX-OS version 802.1X. The vulnerability stems from a failure to fully authenticate the input of Extensible Authentication Protocol EAPOL frames on the LAN. An...

The vulnerability of the Extensible Authentication Protocol over LAN (EAPOL) implementation in Cisco router microsoftware of the Small Business 100 Series and Small Business 300 Series models allows a hacker to disclose protected information.

The vulnerability of the Extensible Authentication Protocol over LAN EAPOL implementation in Cisco router software of the Small Business 100 Series and Small Business 300 Series models arises due to errors in the EAPOL message processing mechanism during Wi-Fi connection establishment. Exploiting...

The vulnerability of the Extensible Authentication Protocol over LAN (EAPOL) implementation in microprogrammable routering software from Cisco’s Small Business 100 Series and Cisco Small Business 300 Series allows a perpetrator to induce a service failure.

The vulnerability of the Extensible Authentication Protocol over LAN EAPOL implementation in microprogramming-based router software from Cisco’s Small Business 100 Series and Cisco Small Business 300 Series models is related to errors in processing EAPOL frames. Exploiting this vulnerability allo...

USN-3810-1 ppp vulnerability

Ivan Gotovchits discovered that ppp incorrectly handled the EAP-TLS protocol. A remote attacker could use this issue to cause ppp to crash, resulting in a denial of service, or possibly bypass authentication...

wpa_supplicant: Unauthenticated EAPOL-Key decryption in wpa_supplicant

An issue was discovered in rsnsupp/wpa.c in wpasupplicant 2.0 through 2.6. Under certain conditions, the integrity of EAPOL-Key messages is not checked, leading to a decryption oracle. An attacker within range of the Access Point and client can abuse the vulnerability to recover sensitive...

Cisco IOS XE Software Access Control Error Vulnerability

Cisco IOS XE Software is an operating system developed by Cisco for its network devices. An access control error vulnerability exists in the MACsec Key Agreement MKA using Extensible Authentication Protocol-Transport Layer Security EAP-TLS functionality in Cisco IOS XE Software, which arises from...

Authentication flaw

A vulnerability in the MACsec Key Agreement MKA using Extensible Authentication Protocol-Transport Layer Security EAP-TLS functionality of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to bypass authentication and pass traffic through a Layer 3 interface of an affected...

Cisco Small Business 100 Series Wireless Access Points and Small Business 300 Series Wireless Access Points Denial of Service Vulnerability

Cisco Small Business 100 Series Wireless Access Points and Small Business 300 Series Wireless Access Points are different series of wireless access point products from Cisco, which provide high-capacity wireless LAN and guest access services, among other features. The Extensible Authentication...

CVE-2018-0415

A vulnerability in the implementation of Extensible Authentication Protocol over LAN EAPOL functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Series Wireless Access Points could allow an authenticated, adjacent attacker to cause a denial of servic...

CVE-2018-0412

A vulnerability in the implementation of Extensible Authentication Protocol over LAN EAPOL functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Series Wireless Access Points could allow an unauthenticated, adjacent attacker to force the downgrade of...

DEBIAN-CVE-2018-11574

Improper input validation together with an integer overflow in the EAP-TLS protocol implementation in PPPD may cause a crash, information disclosure, or authentication bypass. This implementation is distributed as a patch for PPPD 0.91, and includes the affected eap.c and eap-tls.c files...

UBUNTU-CVE-2018-11574

Improper input validation together with an integer overflow in the EAP-TLS protocol implementation in PPPD may cause a crash, information disclosure, or authentication bypass. This implementation is distributed as a patch for PPPD 0.91, and includes the affected eap.c and eap-tls.c files...

Cisco Identity Services Engine Denial of Service Vulnerability

Cisco Identity Services Engine ISE is an identity-based environment awareness platform ISE Identity Services Engine from Cisco. The platform oversees the network by collecting real-time information from the network, users, and devices, and developing and enforcing policies accordingly.ISE Express...

DEBIAN-CVE-2015-5315

The eappwdprocess function in eappeer/eappwd.c in wpasupplicant 2.x before 2.6 does not validate that the reassembly buffer is large enough for the final fragment when EAP-pwd is enabled in a network configuration profile, which allows remote attackers to cause a denial of service process...

undertow: Long URL proxy request lead to java.nio.BufferOverflowException and DoS

It was discovered that a long URL sent to EAP 7 Server operating as a reverse proxy with default buffer sizes causes a Denial of Service...

Design/Logic Flaw

A vulnerability in Extensible Authentication Protocol EAP ingress frame processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow an unauthenticated, Layer 2 radio frequency RF adjacent attacker to cause the Access Point AP to reload, resulting in a denial of service...

Cisco Aironet Access Points MAC Authentication Bypass Vulnerability

A vulnerability in the implementation of Protected Extensible Authentication Protocol PEAP functionality for standalone configurations of Cisco Aironet 1800, 2800, and 3800 Series Access Points could allow an unauthenticated, adjacent attacker to bypass authentication and connect to an affected...