122 matches found
CVE-2022-46740
There is a denial of service vulnerability in the Wi-Fi module of the HUAWEI WS7100-20 Smart WiFi Router.Successful exploit could cause a denial of service DoS condition...
CVE-2022-46321
The Wi-Fi module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect data confidentiality...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a security vulnerability that stems from incorrect permission checks on WIFI modules. An attacker exploited the vulnerability t...
PT-2022-34621 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.9 Description: A potential issue in the Linux Kernel's wifi mt76 mt7921e module may cause a crash during chip reset failure. The actual impact and attack plausibility have not yet been proven...
CVE-2020-25168
Hard-coded credentials in the B. Braun Melsungen AG SpaceCom Version L81/U61 and earlier, and the Data module compactplus Versions A10 and A11 enable attackers with command line access to access the device’s Wi-Fi module...
CVE-2022-22258
The Wi-Fi module has an event notification vulnerability.Successful exploitation of this vulnerability may allow third-party applications to intercept event notifications and add information and result in elevation-of-privilege...
CVE-2022-22258
The Wi-Fi module has an event notification vulnerability.Successful exploitation of this vulnerability may allow third-party applications to intercept event notifications and add information and result in elevation-of-privilege...
Huawei HarmonyOS安全漏洞
Huawei HarmonyOS is an operating system from Huawei China. Huawei HarmonyOS WIFI module is vulnerable to elevation of privilege. The vulnerability stems from a faulty program call to a high-level native procedure. An attacker could exploit the vulnerability for elevation of privilege...
Apple iOS和Apple iPadOS 信息泄露漏洞
Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. An information disclosure vulnerability exists in the Apple iOS and iPadOS Wi-Fi module, which is caused by a malicious...
Moddable SDK 缓冲区错误漏洞
Moddable SDK is a software development kit SDK for IoT embedded software development from Moddable U.S.A. A buffer error vulnerability exists in Moddable SDK v10.5.0, which originates in the software component module /modules/network/wifi/esp/modwifi. c is vulnerable to a heap-based buffer...
Lantronix PremierWave 路径遍历漏洞
The Lantronix PremierWave 2050 is an embedded enterprise Wi-Fi module from Lantronix, Inc. Used to provide reliable and always-on 5G Wi-Fi connectivity, the Lantronix PremierWave 2050 is vulnerable to a path traversal vulnerability that can be exploited by attackers to cause local file inclusion...
Critical Bugs Found in Popular Realtek Wi-Fi Module for Embedded Devices
Major vulnerabilities have been discovered in the Realtek RTL8195A Wi-Fi module that could have been exploited to gain root access and take complete control of a device's wireless communications. The six flaws were reported by researchers from Israeli IoT security firm Vdoo. The Realtek RTL8195A...
CVE-2020-25857
The function ClientEAPOLKeyRecvd in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an rtlmemcpy operation, resulting in a stack buffer overflow which can be exploited for denial of service. An attacker c...
Stack overflow
The function DecWPA2KeyData in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an internal function, rtarc4cryptveneer or AESUnWRAPveneer, resulting in a stack buffer overflow which can be exploited for...
CVE-2020-12107
The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows command injection via a text field, which allow full control over this module's Operating System...
Command injection
The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows command injection via a text field, which allow full control over this module's Operating System...
CVE-2020-12107
CVE-2020-12107 affects VPNCrypt M10 2.6.5: the Web portal of the WiFi module allows command injection via a text field, enabling full control over the module’s operating system. Reported CVSS v3.1 base score 9.8 (NETWORK, LOW complexity, PR NONE, UI NONE) with high impact on confidentiality, inte...
CVE-2020-12106
CVE-2020-12106 affects VPNCrypt M10 2.6.5: the Web portal allows unauthenticated HTTP POST requests to multiple administrative actions (e.g., changing Administrator credentials or connecting the device to a rogue access point). Red Hat and NVD entries corroborate unauthenticated remote access to ...
USR IOT USR-WIFI232-S/T/G2/H Low Power WiFi Module Cross-Site Scripting Vulnerability
USR IOT USR-WIFI232-S/T/G2/H Low Power WiFi Module is a low power serial wireless WIFI module from China's USR Internet of Things Technology USR IOT. A cross-site scripting vulnerability exists in the configuration web interface in the USR IOT USR-WIFI232-S/T/G2/H Low Power WiFi Module. The...
Cross site scripting
A cross-site scripting XSS vulnerability in the configuration web interface of the Jinan USR IOT USR-WIFI232-S/T/G2/H Low Power WiFi Module with web version 1.2.2 allows attackers to leak credentials of the Wi-Fi access point the module is logged into, and the web interface login credentials, by...