Lucene search
K

39 matches found

NVD
NVD
added 2021/07/13 6:15 a.m.22 views

CVE-2021-1896

Weak configuration in WLAN could cause forwarding of unencrypted packets from one client to another in Snapdragon Compute, Snapdragon Connectivity...

4.3CVSS0.00172EPSS
Exploits0References1
Prion
Prion
added 2021/07/13 6:15 a.m.19 views

Code injection

Weak configuration in WLAN could cause forwarding of unencrypted packets from one client to another in Snapdragon Compute, Snapdragon Connectivity...

3.3CVSS4.8AI score0.00172EPSS
Exploits0References1
CVE
CVE
added 2021/07/13 5:30 a.m.94 views

CVE-2021-1896

The CVE-2021-1896 entry concerns Qualcomm Qualcomm Snapdragon components (Compute and Connectivity) with a weak WLAN configuration that could forward unencrypted packets between peers. Available sources from NVD and Red Hat, PRION, PT Security and others indicate the vulnerability affects Snapdra...

4.3CVSS4.8AI score0.00172EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/07/13 5:30 a.m.33 views

CVE-2021-1896

Weak configuration in WLAN could cause forwarding of unencrypted packets from one client to another in Snapdragon Compute, Snapdragon Connectivity...

4.3CVSS5.1AI score0.00172EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/07/13 12:0 a.m.6 views

PT-2021-13654 · Qualcomm · Snapdragon Connectivity +1

Name of the Vulnerable Software and Affected Versions: Snapdragon Compute, Snapdragon Connectivity affected versions not specified Description: A weak configuration in WLAN could cause the forwarding of unencrypted packets from one client to another. Recommendations: At the moment, there is no...

4.3CVSS4.6AI score0.00172EPSS
Exploits0References3
Hacker One
Hacker One
added 2020/06/08 3:56 p.m.51 views

Internet Bug Bounty: IP-in-IP protocol routes arbitrary traffic by default - CVE-2020-10136

Many machines 150K-180K on the internet accept and route IP over IP by default. IP-in-IP encapsulation is a tunneling protocol specified in RFC 2003 that allows for IP packets to be encapsulated inside another IP packets. This is very similar to IPSEC VPNs in tunnel mode, except in the case of...

5CVSS5.6AI score0.26458EPSS
Exploits0
OSV
OSV
added 2019/11/14 5:15 p.m.5 views

CVE-2019-16110

The network protocol of Blade Shadow though 2.13.3 allows remote attackers to take control of a Shadow instance and execute arbitrary code by only knowing the victim's IP address, because packet data can be injected into the unencrypted UDP packet stream...

8.1CVSS7.5AI score0.01691EPSS
Exploits0References1
exploitpack
exploitpack
added 2018/11/06 12:0 a.m.21 views

FaceTime - readSPSandGetDecoderParams Stack Corruption

FaceTime - readSPSandGetDecoderParams Stack Corruption There are a variety of problems that occur when processing malformed H264 streams in readSPSandGetDecoderParams, leading to OOB read, OOB write and stackchk crashes. I think the root cause is stack corruption. This issue can occur if someone...

Exploits0
CNVD
CNVD
added 2017/10/24 12:0 a.m.4 views

Information Disclosure Vulnerability in Multiple Cisco Products (CNVD-2017-33214)

Cisco IOS Software and so on are the products of the American Cisco Cisco company.Cisco IOS Software is a set of operating systems developed for the Cisco network equipment.DS 9222i Multiservice Modular Switch A switch device. An information disclosure vulnerability exists in the encryption...

5.9CVSS5.6AI score0.00688EPSS
Exploits0References1
NVD
NVD
added 2017/09/25 9:29 p.m.17 views

CVE-2011-4667

The encryption library in Cisco IOS Software 15.21T, 15.21T1, and 15.22T, Cisco NX-OS in Cisco MDS 9222i Multiservice Modular Switch, Cisco MDS 9000 18/4-Port Multiservice Module, and Cisco MDS 9000 Storage Services Node module before 5.26, and Cisco IOS in Cisco VPN Services Port Adaptor for...

5.9CVSS5.7AI score0.00688EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/09/25 9:0 p.m.18 views

CVE-2011-4667

The encryption library in Cisco IOS Software 15.21T, 15.21T1, and 15.22T, Cisco NX-OS in Cisco MDS 9222i Multiservice Modular Switch, Cisco MDS 9000 18/4-Port Multiservice Module, and Cisco MDS 9000 Storage Services Node module before 5.26, and Cisco IOS in Cisco VPN Services Port Adaptor for...

5.7AI score0.00688EPSS
Exploits0References2
CVE
CVE
added 2017/09/25 9:0 p.m.50 views

CVE-2011-4667

Cisco reports a vulnerability in the encryption library used by Cisco IOS Software (15.2(1)T, 15.2(1)T1, 15.2(2)T), Cisco NX-OS on MDS 9222i, MDS 9000 modules, and Cisco IOS in VPN Services Port Adaptor for Catalyst 6500 (12.2(33)SXI/SXJ); affected sessions protected by IPsec could leak part of t...

5.9CVSS5.7AI score0.00688EPSS
Exploits0References2Affected Software2
RedhatCVE
RedhatCVE
added 2015/10/30 10:3 a.m.21 views

CVE-2006-7180

ieee80211output.c in MadWifi before 0.9.3 sends unencrypted packets before WPA authentication succeeds, which allows remote attackers to obtain sensitive information related to network structure, and possibly cause a denial of service disrupted authentication and conduct spoofing attacks...

6.8CVSS7.5AI score0.02069EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/04/19 12:0 a.m.18 views

GLSA-200704-15 : MadWifi: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200704-15 MadWifi: Multiple vulnerabilities The driver does not properly process Channel Switch Announcement Information Elements, allowing for an abnormal channel change. The ieee80211input function does not properly handle AUTH...

7.8CVSS5.5AI score0.02602EPSS
Exploits0References4
Gentoo Linux
Gentoo Linux
added 2007/04/17 12:0 a.m.56 views

MadWifi: Multiple vulnerabilities

Background The MadWifi driver provides support for Atheros based IEEE 802.11 Wireless Lan cards. Description The driver does not properly process Channel Switch Announcement Information Elements, allowing for an abnormal channel change. The ieee80211input function does not properly handle AUTH...

7.8CVSS6.5AI score0.02602EPSS
Exploits0
NVD
NVD
added 2007/03/30 1:19 a.m.18 views

CVE-2006-7180

ieee80211output.c in MadWifi before 0.9.3 sends unencrypted packets before WPA authentication succeeds, which allows remote attackers to obtain sensitive information related to network structure, and possibly cause a denial of service disrupted authentication and conduct spoofing attacks...

6.8CVSS6.6AI score0.02069EPSS
Exploits0References15
UbuntuCve
UbuntuCve
added 2007/03/30 1:19 a.m.21 views

CVE-2006-7180

ieee80211output.c in MadWifi before 0.9.3 sends unencrypted packets before WPA authentication succeeds, which allows remote attackers to obtain sensitive information related to network structure, and possibly cause a denial of service disrupted authentication and conduct spoofing attacks...

6.8CVSS5.9AI score0.02069EPSS
Exploits0References2
Cvelist
Cvelist
added 2007/03/30 1:0 a.m.21 views

CVE-2006-7180

ieee80211output.c in MadWifi before 0.9.3 sends unencrypted packets before WPA authentication succeeds, which allows remote attackers to obtain sensitive information related to network structure, and possibly cause a denial of service disrupted authentication and conduct spoofing attacks...

6.5AI score0.02069EPSS
Exploits0References15
CVE
CVE
added 2007/03/30 1:0 a.m.60 views

CVE-2006-7180

CVE-2006-7180 affects the MadWifi driver (ieee80211_output.c) prior to 0.9.3, where unencrypted 802.11 frames can be observed before WPA authentication completes. Public sources in the connected documents describe this as enabling remote attackers to obtain sensitive information related to networ...

6.8CVSS6.5AI score0.02069EPSS
Exploits0References15Affected Software1
Rows per page
Query Builder