57 matches found
CVE-2026-23810
A vulnerability in the packet processing logic may allow an authenticated attacker to craft and transmit a malicious Wi-Fi frame that causes an Access Point AP to classify the frame as group-addressed traffic and re-encrypt it using the Group Temporal Key GTK associated with the victim's BSSID...
CVE-2026-23810
A vulnerability in the packet processing logic may allow an authenticated attacker to craft and transmit a malicious Wi-Fi frame that causes an Access Point AP to classify the frame as group-addressed traffic and re-encrypt it using the Group Temporal Key GTK associated with the victim's BSSID...
CVE-2026-23810 Cross-BSSID GTK Re-encryption and Traffic Injection
A vulnerability in the packet processing logic may allow an authenticated attacker to craft and transmit a malicious Wi-Fi frame that causes an Access Point AP to classify the frame as group-addressed traffic and re-encrypt it using the Group Temporal Key GTK associated with the victim's BSSID...
CVE-2026-23810
CVE-2026-23810 describes a vulnerability in wireless packet processing where an authenticated attacker can craft a malicious Wi‑Fi frame that leads an AP to treat it as group-addressed traffic and re-encrypt using the GTK tied to the victim’s BSSID. This enables GTK‑independent traffic injection ...
HPE Aruba Networking Wireless Operating System 安全漏洞
HPE Aruba Networking Wireless Operating System is a wireless network operating system developed by the American company HPE. There are security vulnerabilities in the HPE Aruba Networking Wireless Operating System. These vulnerabilities stem from defects in the data packet processing logic, which...
PT-2026-22944
Name of the Vulnerable Software and Affected Versions affected versions not specified Description A flaw in how network packets are handled could let an authorized attacker create a harmful Wi-Fi frame. This frame could trick an Access Point AP into treating it as group traffic and re-encrypting ...
EUVD-2022-37254
Malicious code in bioql PyPI...
EUVD-2024-33168
Malicious code in bioql PyPI...
EUVD-2023-32758
Malicious code in bioql PyPI...
EUVD-2023-35507
Malicious code in bioql PyPI...
EUVD-2022-37022
Malicious code in bioql PyPI...
EUVD-2024-40035
Malicious code in bioql PyPI...
CVE-2024-38886
An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform a Traffic Injection attack due to improper verification of the source of a communication channel...
CVE-2024-10534
Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control Systems PACS / Access Control Security Systems ACSS allows Traffic Injection. This issue affects Personnel Attendance Control Systems PACS / Access Control Security Systems ACSS: before 2024...
CVE-2022-34294
totd 1.5.3 uses a fixed UDP source port in upstream queries sent to DNS resolvers. This allows DNS cache poisoning because there is not enough entropy to prevent traffic injection attacks...
CVE-2024-43099
The session hijacking attack targets the application layer's control mechanism, which manages authenticated sessions between a host PC and a PLC. During such sessions, a session key is utilized to maintain security. However, if an attacker captures this session key, they can inject traffic into a...
CVE-2024-10534
Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control Systems PACS / Access Control Security Systems ACSS allows Traffic Injection. This issue affects Personnel Attendance Control Systems PACS / Access Control Security Systems ACSS: before 2024...
CVE-2024-10534
Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control Systems PACS / Access Control Security Systems ACSS allows Traffic Injection.This issue affects Personnel Attendance Control Systems PACS / Access Control Security Systems ACSS: before 2024...
CVE-2024-10534
Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control Systems PACS / Access Control Security Systems ACSS allows Traffic Injection. This issue affects Personnel Attendance Control Systems PACS / Access Control Security Systems ACSS: before 2024...
CVE-2024-10534
CVE-2024-10534 affects Dataprom Informatics’ PACS/ACSS products, caused by an origin validation error that enables traffic injection. The vulnerability, described as an improper origin check affecting PACS/ACSS prior to 2024, is documented with high-severity impact (traffic manipulation). Connect...