Lucene search
K

87 matches found

Rockylinux
Rockylinux
added 2021/05/18 5:50 a.m.36 views

wpa_supplicant security, bug fix, and enhancement update

An update is available for wpasupplicant. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The wpasupplicant packages contain an 802.1X Supplicant with support fo...

7.9CVSS1.2AI score0.04707EPSS
Exploits1
Fedora
Fedora
added 2021/03/19 8:23 p.m.45 views

[SECURITY] Fedora 34 Update: wpa_supplicant-2.9-12.fc34

wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...

7.5CVSS5.2AI score0.01228EPSS
Exploits0
Fedora
Fedora
added 2021/03/19 8:21 p.m.44 views

[SECURITY] Fedora 34 Update: wpa_supplicant-2.9-11.fc34

wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...

7.9CVSS5.2AI score0.04707EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2021/03/11 7:43 a.m.79 views

Important: Red Hat Security Advisory: wpa_supplicant security update

An update for wpasupplicant is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS7.1AI score0.01228EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2021/03/11 7:9 a.m.34 views

Important: wpa_supplicant security update

The wpasupplicant packages contain an 802.1X Supplicant with support for WEP, WPA, WPA2 IEEE 802.11i / RSN, and various EAP authentication methods. They implement key negotiation with a WPA Authenticator for client stations and controls the roaming and IEEE 802.11 authentication and association o...

5.4CVSS2.4AI score0.01228EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/03/10 8:3 p.m.104 views

Important: Red Hat Security Advisory: wpa_supplicant security update

An update for wpasupplicant is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS7.1AI score0.01228EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/03/03 12:0 a.m.14 views

Fedora: Security Advisory for wpa_supplicant (FEDORA-2021-3430f96019)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.6AI score0.01228EPSS
Exploits0References2
Fedora
Fedora
added 2021/03/02 3:56 p.m.40 views

[SECURITY] Fedora 33 Update: wpa_supplicant-2.9-8.fc33

wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...

7.5CVSS5.2AI score0.01228EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/02/02 12:0 a.m.6 views

The vulnerability of the Bluetooth BR/EDR encryption key negotiation protocol lies in its authentication procedures’ deficiencies, which allow attackers to compromise the confidentiality and integrity of the protected information.

The vulnerability of the Bluetooth BR/EDR encryption key negotiation protocol is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality and integrity of the protected information...

5.4CVSS6.5AI score0.02386EPSS
Exploits2References33Affected Software4
CVE
CVE
added 2020/10/29 1:29 p.m.57 views

CVE-2020-5938

The CVE concerns F5 BIG-IP IPsec negotiation where, during tunnel setup with authenticated peers, the peer may agree on a key length outside the BIG-IP‑configured policy. Affected BIG‑IP versions: 11.6.1–11.6.5.2, 12.1.0–12.1.5.x, and 13.1.0–13.1.3.4. The vulnerability can lead to weaker-than-con...

6.5CVSS6.4AI score0.00523EPSS
Exploits0References1Affected Software14
Prion
Prion
added 2020/08/11 8:15 p.m.31 views

Authentication flaw

A vulnerability in the in-band key negotiation exists in the AWS S3 Crypto SDK for GoLang versions prior to V2. An attacker with write access to the targeted bucket can change the encryption algorithm of an object in the bucket, which can then allow them to change AES-GCM to AES-CTR. Using this i...

2.1CVSS4.2AI score0.00231EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/08/11 7:20 p.m.55 views

CVE-2020-8912 In-band key negotiation issue in AWS S3 Crypto SDK for GoLang

A vulnerability in the in-band key negotiation exists in the AWS S3 Crypto SDK for GoLang versions prior to V2. An attacker with write access to the targeted bucket can change the encryption algorithm of an object in the bucket, which can then allow them to change AES-GCM to AES-CTR. Using this i...

2.5CVSS4.2AI score0.00231EPSS
Exploits1References2
Fortinet
Fortinet
added 2020/04/23 12:0 a.m.67 views

CVE-2019-9506 Encryption Key Negotiation of Bluetooth (KNOB) Vulnerability

The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks aka "KNOB" that can decrypt traffic and inject arbitrary...

4.8CVSS5.3AI score0.02691EPSS
Exploits2Affected Software1
RedHat Linux
RedHat Linux
added 2020/01/22 9:26 p.m.1 views

hardware: bluetooth: BR/EDR encryption key negotiation attacks (KNOB)

A flaw was discovered in the Bluetooth protocol. An attacker within physical proximity to the Bluetooth connection could downgrade the encryption protocol to be trivially brute forced...

8.1CVSS7.1AI score0.02691EPSS
Exploits2References4
Fedora
Fedora
added 2019/11/17 1:13 a.m.33 views

[SECURITY] Fedora 30 Update: wpa_supplicant-2.8-3.fc30

wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...

6.5CVSS5.2AI score0.03252EPSS
Exploits0
Fedora
Fedora
added 2019/11/15 3:20 a.m.44 views

[SECURITY] Fedora 29 Update: wpa_supplicant-2.7-2.fc29

wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...

6.5CVSS5.2AI score0.01476EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2019/10/22 10:8 a.m.4 views

hardware: bluetooth: BR/EDR encryption key negotiation attacks (KNOB)

A flaw was discovered in the Bluetooth protocol. An attacker within physical proximity to the Bluetooth connection could downgrade the encryption protocol to be trivially brute forced...

8.1CVSS7.1AI score0.02691EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2019/10/22 12:0 a.m.136 views

CentOS 7 : kernel (CESA-2019:3055)

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS7AI score0.06821EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2019/10/17 12:0 a.m.71 views

RHEL 7 : kernel-rt (RHSA-2019:3089)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3089 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

9.8CVSS7.5AI score0.06821EPSS
Exploits3References11
RedHat Linux
RedHat Linux
added 2019/10/16 7:58 a.m.3 views

hardware: bluetooth: BR/EDR encryption key negotiation attacks (KNOB)

A flaw was discovered in the Bluetooth protocol. An attacker within physical proximity to the Bluetooth connection could downgrade the encryption protocol to be trivially brute forced...

8.1CVSS7.1AI score0.02691EPSS
Exploits2References4
Rows per page
Query Builder