43 matches found
PT-2025-44977
Name of the Vulnerable Software and Affected Versions Aruba WLAN AP Driver affected versions not specified Description An out-of-bounds write issue exists in the wlan AP driver due to an incorrect bounds check. Successful exploitation could allow a malicious actor with System privileges to escala...
CVE-2025-60017
Unitree Go2, G1, H1, and B2 devices through 2025-09-20 allow root OS command injection via the hostapdrestart.sh wifissid or wifipass parameter within restartwifiap and restartwifista...
CVE-2025-20364
Cisco Wireless AP Software is affected by CVE-2025-20364 in the Device Analytics action frame processing. The issue stems from insufficient verification of incoming 802.11 Device Analytics action frames, enabling an unauthenticated, adjacent attacker to inject frames with arbitrary information. A...
TOTOLINK CA600-PoE recvUpgradeNewFw Function Command Injection Vulnerability
TOTOLINK CA600-PoE is an outdoor wireless AP/CPE device from China Gion Electronics TOTOLINK. TOTOLINK CA600-PoE suffers from a command injection vulnerability that stems from the recvUpgradeNewFw function failing to properly filter construct command special characters, commands, etc. No detailed...
CVE-2023-49133
The CVE-2023-49133 family affects TP-Link AC1350 (EAP225 V3) and N300 (EAP115 V4) devices via the tddpd enable_test_mode function exposed over the TP-Link Device Debug Protocol (TDDP). Talos documents a command-execution path: unauthenticated network requests trigger enable_test_mode, which can f...
Moxa AWK-3131A Web Application asqc.asp Information Disclosure (CVE-2016-8722)
An exploitable Information Disclosure vulnerability exists in the Web Application functionality of Moxa AWK-3131A Series Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client. Retrieving a specific URL without authentication can reveal sensitive information to an attacker. This plugin only work...
Moxa Web Application Nonce Reuse Vulnerability (CVE-2016-8712)
An exploitable nonce reuse vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless AP running firmware 1.1. The device uses one nonce for all session authentication requests and only changes the nonce if the web application has been idle for 300 seconds. This plugin...
VulnCheck KEV: CVE-2023-25717
Ruckus Wireless Access Point AP software contains an unspecified vulnerability in the web services component. If the web services component is enabled on the AP, an attacker can perform cross-site request forgery CSRF or remote code execution RCE. This vulnerability impacts Ruckus...
Tenda i9 formwrlSSIDset function buffer overflow vulnerability
Tenda i9 is an enterprise wireless AP device. a buffer overflow vulnerability exists in the Tenda i9 formwrlSSIDset function, which can be exploited by attackers to cause a denial of service DoS via a specially crafted string...
Tenda i9 formwrlSSIDgett function buffer overflow vulnerability
Tenda i9 is an enterprise wireless AP device. a buffer overflow vulnerability exists in the Tenda i9 formwrlSSIDgett function, which can be exploited by attackers to cause a denial of service DoS via a specially crafted string...
Tenda i9 set_local_time function buffer overflow vulnerability
Tenda i9 is an enterprise wireless AP device. a buffer overflow vulnerability exists in the Tenda i9 setlocaltime function, which can be exploited by attackers to cause a denial of service DoS via a specially crafted string...
Tenda i9 formWifiMacFilterGet function buffer overflow vulnerability
Tenda i9 is an enterprise wireless AP device. a buffer overflow vulnerability exists in the Tenda i9 formWifiMacFilterGet function, which can be exploited by attackers to cause a denial of service DoS via a specially crafted string...
CVE-2021-0969
In getTitle of AccessPoint.java, there is a possible unhandled exception due to a missing null check. This could lead to remote denial of service if a proximal Wi-Fi AP provides invalid information with no additional execution privileges needed. User interaction is needed for exploitation.Product...
RaspAP Command Injection Vulnerability (CNVD-2021-94940)
RaspAP is a software solution that can easily deploy Raspberry Pi as a wireless AP access point with a set of responsive WebUI to control WiFi, as easy to use as a home router. a command injection vulnerability exists in includes/configureclient.php in RaspAP version 2.6.6. An attacker could...
Stack overflow vulnerability in the se*** interface of the Tenda 11AC 1200MBPS wireless panelized AP (CNVD-2021-25917)
hereinafter referred to as "Tengda" was founded in 1999, is a professional supplier of network communication equipment and solutions, but also the research and development, production, supply, sales and service in one of the high-tech enterprises. A stack overflow vulnerability exists in the se...
Unauthorized Access Vulnerability in Alcatel OAW Series Smart Wireless AP Devices
Alcatel-Lucent, a multinational company providing telecommunications hardware and software equipment and services, is headquartered in Paris, France. An unauthorized access vulnerability exists in the Alcatel OAW series of Smart Wireless AP devices, which can be exploited by an attacker to...
Unauthorized Access Vulnerability in Huaxin Aotom HAN Series Smart Wireless AP Devices
Beijing Huaxin Aotian Network Technology Co., Ltd. was registered in Haidian Branch on 2015-10-13. The company's business scope includes technology development, technology promotion, technology transfer, technology consulting, technology service and so on. Unauthorized access vulnerability exists...
Binary Vulnerability in Huaxin Aotom HAN Series Smart Wireless AP Devices
Beijing Huaxin Aotian Network Technology Co., Ltd. was registered in Haidian Branch on 2015-10-13. Legal representative Liu Jun, the company's business scope includes technology development, technology promotion, technology transfer, technology consulting, technical services and so on. A binary...
CVE-2020-10269 RVD#2566: Hardcoded Credentials on MiRX00 wireless Access Point
One of the wireless interfaces within MiR100, MiR200 and possibly according to the vendor other MiR fleet vehicles comes pre-configured in WiFi Master Access Point mode. Credentials to such wireless Access Point default to well known and widely spread SSID MiRRXXXX and passwords omitted. This...
Moxa AWK-3131A iw_console privilege escalation vulnerability
Added: 02/27/2020 CVE: CVE-2019-5136 Background Moxa AWK-3131A is a 3-in-1 industrial wireless AP/bridge/client device. Problem A privilege escalation vulnerability exists in the iwconsole functionality where a specially crafted menu selection string can cause an escape from the restricted consol...