CVE-2026-2702

CVE-2026-2702 affects Beetel 777VR1 (firmware up to 01.00.09). The issue: hard-coded WPA2-PSK credentials in the WPA2 PSK processing component. Consequence: partial confidentiality impact with adjacent-network exposure; no integrity/availability impact per the entry. Exploitability is listed as h...

MiracleLinux 7 : wpa_supplicant-2.6-5.el7.1 (AXSA:2017-2342:03)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2017-2342:03 advisory. A new exploitation technique called key reinstallation attacks KRACK affecting WPA2 has been discovered. A remote attacker within Wi-Fi range could...

CVE-2020-11159

Buffer over-read can happen while processing WPA,RSN IE of beacon and response frames if IE length is less than length of frame pointer being accessed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

UBUNTU-CVE-2025-27558

IEEE P802.11-REVme D1.1 through D7.0 allows FragAttacks against mesh networks. In mesh networks using Wi-Fi Protected Access WPA, WPA2, or WPA3 or Wired Equivalent Privacy WEP, an adversary can exploit this vulnerability to inject arbitrary frames towards devices that support receiving non-SSP...

D-Link DAP-2622 安全漏洞

The D-Link DAP-2622 is a wireless access point Access Point device from D-Link, a Chinese company. A security vulnerability exists in the D-Link DAP-2622, which originates from a DDP Get SSID List WPA PSK Information Disclosure vulnerability...

The vulnerability of the PEAP (Protected Extensible Authentication Protocol) client implementation of the Wi-Fi Protected Access Point software WPA Supplicant allows a hacker to intercept the unencrypted user traffic.

The vulnerability of the PEAP Protected Extensible Authentication Protocol client Wi-Fi access control implementation, such as WPA Supplicant, arises due to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to intercept unencrypted user traffic by...

The vulnerability of the Wi-Fi WPA Supplicant client, related to deficiencies in authentication procedures, allows attackers to trigger a service failure.

The vulnerability of the Wi-Fi WPA Supplicant client is related to deficiencies in authentication procedures. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

SUSE CVE-2017-13088

Wi-Fi Protected Access WPA and WPA2 that support 802.11v allows reinstallation of the Integrity Group Temporal Key IGTK when processing a Wireless Network Management WNM Sleep Mode Response frame, allowing an attacker within radio range to replay frames from access points to clients...

SUSE CVE-2020-26143

An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration...

SUSE CVE-2020-26146

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfiltrate selected fragments. This vulnerability is exploitable when another device sends fragmented...

The vulnerability of the SAE implementation for secure Wi-Fi access control software, WPA Supplicant, arises from information disclosure due to incompatibility. This allows attackers to expose the protected information.

The vulnerability of the SAE implementation for the Wi-Fi Protected Access Point’s WPA Supplicant is related to the disclosure of information due to incompatibility. This vulnerability allows a malicious actor to disclose the protected information remotely...

The vulnerability of the WPA algorithm implementation in D-Link DIR-850L A router software allows a hacker to circumvent security restrictions.

The vulnerability of the WPA algorithm implementation in D-Link DIR-850L router software is related to an improperly implemented authentication mechanism. Exploiting this vulnerability allows a hacker to circumvent security restrictions by sending specially created packets...

Mageia: Security Advisory (MGASA-2021-0257)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the SAE implementation of the wpa_supplicant function for wireless communication devices with WPA certification lies in the authentication procedures’ flaws, which allow a perpetrator to cause a service failure.

The vulnerability of the SAE function of the wpasupplicant implementation for wireless communication devices with WPA certification is related to incorrect authentication sequence. Exploiting this vulnerability allows a remote attacker to cause service failure...

CVE-2021-37910

ASUS routers Wi-Fi protected access protocol WPA2 and WPA3-SAE has improper control of Interaction frequency vulnerability, an unauthenticated attacker can remotely disconnect other users' connections by sending specially crafted SAE authentication frames...

ASUS routers 安全漏洞

ASUS routers is a router app from ASUS, Taiwan, China. A security vulnerability exists in ASUS routers, which stems from an improperly controlled interaction frequency in the ASUS routers Wi-Fi protected access protocol WPA2 and WPA3-SAE, which allows an unauthenticated attacker to remotely...

The vulnerability of implementations of WEP, WPA, WPA2, and WPA3 algorithms in the Linux operating system allows attackers to compromise the integrity of protected information.

The vulnerability of implementations of WEP, WPA, WPA2, and WPA3 algorithms in Linux operating systems exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to compromise the integrity of protected information by using specially crafted...

The vulnerability of implementations of algorithms such as WPA, WPA2, and WPA3—standards for IEEE 802.11 communication—allows attackers to compromise the integrity of protected information.

The vulnerability of implementations of WPA, WPA2, and WPA3—standards for IEEE 802.11 communication—is related to insufficient encryption robustness. Exploiting this vulnerability can allow a malicious actor to compromise the integrity of the protected information...

CVE-2020-26146

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfiltrate selected fragments. This vulnerability is exploitable when another device sends fragmented...

UBUNTU-CVE-2020-26146

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfiltrate selected fragments. This vulnerability is exploitable when another device sends fragmented...