Lucene search
K

34 matches found

NVD
NVD
added 2026/02/20 5:25 p.m.8 views

CVE-2026-26048

The Wi-Fi router is vulnerable to de-authentication attacks due to the absence of management frame protection, allowing forged deauthentication and disassociation frames to be broadcast without authentication or encryption. An attacker can use this to cause unauthorized disruptions and create a...

7.5CVSS0.00259EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/20 4:6 p.m.4 views

CVE-2026-26048 Jinan USR IOT Technology Limited (PUSR) USR-W610 Missing Authentication for Critical Function

The Wi-Fi router is vulnerable to de-authentication attacks due to the absence of management frame protection, allowing forged deauthentication and disassociation frames to be broadcast without authentication or encryption. An attacker can use this to cause unauthorized disruptions and create a...

7.5CVSS5.5AI score0.00259EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/20 4:6 p.m.3 views

CVE-2026-26048

The Wi-Fi router is vulnerable to de-authentication attacks due to the absence of management frame protection, allowing forged deauthentication and disassociation frames to be broadcast without authentication or encryption. An attacker can use this to cause unauthorized disruptions and create a...

7.5CVSS5.5AI score0.00259EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/20 4:6 p.m.23 views

CVE-2026-26048 Jinan USR IOT Technology Limited (PUSR) USR-W610 Missing Authentication for Critical Function

The Wi-Fi router is vulnerable to de-authentication attacks due to the absence of management frame protection, allowing forged deauthentication and disassociation frames to be broadcast without authentication or encryption. An attacker can use this to cause unauthorized disruptions and create a...

7.5CVSS0.00259EPSS
Exploits0References2
CVE
CVE
added 2026/02/20 4:6 p.m.17 views

CVE-2026-26048

CVE-2026-26048 concerns the Jinan USR IOT Technology Limited (PUSR) USR-W610 router. The vulnerability is due to the absence of management frame protection, allowing forged de-authentication and disassociation frames to be broadcast without authentication or encryption, which can enable unauthori...

7.5CVSS5.6AI score0.00259EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/05 12:9 a.m.8 views

CVE-2025-63363

A lack of Management Frame Protection in Waveshare RS232/485 TO WIFI ETH B Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 allows attackers to execute de-authentication attacks, allowing crafted deauthentication and disassociation frames to be broadca...

7.5CVSS7.3AI score0.00268EPSS
Exploits1References1
NVD
NVD
added 2025/12/04 6:15 p.m.5 views

CVE-2025-63363

A lack of Management Frame Protection in Waveshare RS232/485 TO WIFI ETH B Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 allows attackers to execute de-authentication attacks, allowing crafted deauthentication and disassociation frames to be broadca...

7.5CVSS0.00268EPSS
Exploits1References2
OSV
OSV
added 2025/12/04 6:15 p.m.6 views

CVE-2025-63363

A lack of Management Frame Protection in Waveshare RS232/485 TO WIFI ETH B Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 allows attackers to execute de-authentication attacks, allowing crafted deauthentication and disassociation frames to be broadca...

7.5CVSS5.9AI score0.00268EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/12/04 12:0 a.m.6 views

Waveshare RS232/485 TO WIFI ETH (B) 安全漏洞

Waveshare RS232/485 TO WIFI ETH B is a serial server from Waveshare China. A security vulnerability exists in Waveshare RS232/485 TO WIFI ETH B V3.1.1.0, which stems from a lack of management frame protection and could lead to a de-authentication attack...

7.5CVSS6.7AI score0.00268EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.6 views

PT-2025-49110

A lack of Management Frame Protection in Waveshare RS232/485 TO WIFI ETH B Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 allows attackers to execute de-authentication attacks, allowing crafted deauthentication and disassociation frames to be broadca...

7.3AI score0.00268EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/04 12:0 a.m.19 views

CVE-2025-63363

A lack of Management Frame Protection in Waveshare RS232/485 TO WIFI ETH B Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 allows attackers to execute de-authentication attacks, allowing crafted deauthentication and disassociation frames to be broadca...

0.00268EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/12/04 12:0 a.m.4 views

CVE-2025-63363

A lack of Management Frame Protection in Waveshare RS232/485 TO WIFI ETH B Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 allows attackers to execute de-authentication attacks, allowing crafted deauthentication and disassociation frames to be broadca...

6.9AI score0.00268EPSS
Exploits1References2
CVE
CVE
added 2025/12/04 12:0 a.m.16 views

CVE-2025-63363

CVE-2025-63363 affects Waveshare RS232/485 TO WIFI ETH (B) Serial to Ethernet/Wi‑Fi Gateway. The root cause is a lack of Management Frame Protection in firmware version 3.1.1.0 (HW 4.3.2.1; Webpage 7.04T.07.002880.0301), enabling de‑authentication attacks via crafted frames broadcast without auth...

7.5CVSS6.9AI score0.00268EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-5282

Malware in sbrugna...

4.3CVSS5.4AI score0.01165EPSS
Exploits0References11
Microsoft CVE
Microsoft CVE
added 2025/09/04 2:45 a.m.3 views

wifi: wfx: fix possible NULL pointer dereference in wfx_set_mfp_ap()

...

5.5CVSS7AI score0.00225EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.2 views

wifi: iwlwifi: mvm: don't set the MFP flag for the GTK

...

5.5CVSS7.6AI score0.00222EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/08/15 5:34 a.m.11 views

kernel: wifi: iwlwifi: mvm: don't set the MFP flag for the GTK

CVE-2024-27434 is a flaw in the Linux kernel’s iwlwifi driver related to handling Management Frame Protection MFP in certain Wi-Fi configurations. When connecting to an access point using TKIP as the group cipher, the driver incorrectly applies the MFP flag to the Group Temporal Key GTK, which is...

5.5CVSS7.1AI score0.00222EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/08 4:44 a.m.9 views

kernel: wifi: iwlwifi: mvm: don't set the MFP flag for the GTK

CVE-2024-27434 is a flaw in the Linux kernel’s iwlwifi driver related to handling Management Frame Protection MFP in certain Wi-Fi configurations. When connecting to an access point using TKIP as the group cipher, the driver incorrectly applies the MFP flag to the Group Temporal Key GTK, which is...

5.5CVSS7.1AI score0.00222EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/05/21 2:0 a.m.7 views

SUSE CVE-2024-27434

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't set the MFP flag for the GTK The firmware doesn't need the MFP flag for the GTK, it can even make the firmware crash. in case the AP is configured with: group cipher TKIP and MFPC. We would send the GTK...

5.5CVSS6.8AI score0.00222EPSS
Exploits0References13
OSV
OSV
added 2024/05/17 1:15 p.m.2 views

UBUNTU-CVE-2024-27434

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't set the MFP flag for the GTK The firmware doesn't need the MFP flag for the GTK, it can even make the firmware crash. in case the AP is configured with: group cipher TKIP and MFPC. We would send the GTK...

5.5CVSS6.2AI score0.00222EPSS
Exploits0References12
Rows per page
Query Builder