12 matches found
CVE-2026-49196
The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and execution of arbitrary shell commands...
CVE-2026-49196
The Wi-Fi device blocking feature fails to sanitize MAC address input, allowing injection and execution of arbitrary shell commands...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the IPsec MAC address query in net mlx5e calling a sleep function within atomic context,...
EUVD-2025-208885
Use of a deterministic credential generation algorithm in /ftl/bin/calcf2 in Small Cell Sercomm SCE4255W FreedomFi Englewood firmware before DG3934v3@2308041842 allows remote attackers to derive valid administrative/root credentials from the device's MAC address, enabling authentication bypass an...
CVE-2025-56562
An incorrect API discovered in Signify Wiz Connected 1.9.1 allows attackers to remotely launch a DoS on Wiz devices only requiring the MAC address...
Malicious Package
Overview tblogduopack is a malicious package. This package contains malicious code, and its content was removed from the official package manager. The package appears to be part of a larger campaign targeting user credentials. It, and several other variations, masquerade as automation tools for...
GNET G-ONX 安全漏洞
GNET G-ONX is a series of car recorders from GNET. A security vulnerability exists in the GNET G-ONX that stems from the use of only MAC address verification as the sole mechanism for pairing devices, which could lead to bypassing authentication...
FOGProject 安全漏洞
FOGProject is a free open source network computer cloning and management solution from FOGProject Open Source. It can be used to deploy and manage any desktop operating system. FOGProject has a security vulnerability that stems from a lack of access control on the hostinfo page, which only requir...
The vulnerability of the SetOnlineDevName() function in the microprogramming software for wireless Wi-Fi routers Tenda AX12 allows a hacker to execute arbitrary commands.
The vulnerability of the SetOnlineDevName function in the Tenda AX12 wireless Wi-Fi router software lies in the lack of measures taken to sanitize input data during the processing of the mac parameter. Exploiting this vulnerability could allow an attacker to execute arbitrary commands remotely...
The vulnerability of the SetParentsControlInfo() function in D-Link DIR-823G router software allows a hacker to induce a service failure.
The vulnerability of the SetParentsControlInfo function in D-Link DIR-823G router microprogramming software is related to the issue where the operation’s output escapes from the buffer in memory when processing the Mac parameter. Exploiting this vulnerability can allow a remote attacker to cause...
PT-2022-14537 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions prior to Android-13 Description: The issue allows for the potential obtainment of WiFi P2P MAC address without user consent due to a missing permission check in WifiP2pManager. This could lead to local information disclosure...
DEBIAN-CVE-2013-4579
The ath9khtcsetbssidmask function in drivers/net/wireless/ath/ath9k/htcdrvmain.c in the Linux kernel through 3.12 uses a BSSID masking approach to determine the set of MAC addresses on which a Wi-Fi device is listening, which allows remote attackers to discover the original MAC address after...