CVE-2025-66433

HTCondor Access Point before 25.3.1 allows an authenticated user to impersonate other users on the local machine by submitting a batch job. This is fixed in 24.12.14, 25.0.3, and 25.3.1. The earliest affected version is 24.7.3...

EUVD-2015-1525

Malware in sbrugna...

EUVD-2025-21578

Malicious code in bioql PyPI...

EUVD-2025-21585

Malicious code in bioql PyPI...

EUVD-2023-49911

Malicious code in bioql PyPI...

CVE-2025-52688

Successful exploitation of the vulnerability could allow an attacker to inject commands with root privileges on the access point, potentially leading to the loss of confidentiality, integrity, availability, and full control of the access point...

CVE-2025-25056

CVE-2025-25056 describes a Cross-site request forgery in Inaba Denki Sangyo Wi-Fi AP UNIT AC-WPS-11ac series. The vulnerability allows an authenticated user to perform unintended operations when visiting a malicious page while logged in. The JVN entry aggregates multiple CVEs for this product fam...

CVE-2025-25525

Buffer overflow vulnerability in H3C FA3010L access points SWFA1B0V100R005 due to the lack of length verification, which is related to the setting of firewall rules. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands...

CVE-2022-47522

The IEEE 802.11 specifications through 802.11ax allow physically proximate attackers to intercept possibly cleartext target-destined frames by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to the access point such as authentication...

SUSE-SU-2021:1899-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in...

Internet Bug Bounty: Key Reinstallation Attacks: Breaking WPA2 by forcing nonce reuse

Full background information is at krackattacks.com and all detailed information can be found in our research paper. Key Reinstallation Attack: 4-way handshake example We use the 4-way handshake to illustrate the idea behind key reinstallation attacks CVE-2017-13077. Note that in practice, all...

AirConnect Default Password

This AirConnect wireless access point still has the default password set for the web interface. This could be abused by an attacker to gain full control over the wireless network settings. This script was written by H D Moore Information about the AP provided by Brian Caswell Chnages by Tenable :...

CVE-2001-0352

SNMP agents in 3Com AirConnect AP-4111 and Symbol 41X1 Access Point allow remote attackers to obtain the WEP encryption key by reading it from a MIB when the value should be write-only, via 1 dot11WEPDefaultKeyValue in the dot11WEPDefaultKeysTable of the IEEE 802.11b MIB, or 2 ap128bWepKeyValue i...

ISSalert: ISS Advisory: Wired-side SNMP key exposure in 802.11b Access Points

Internet Security Systems Security Advisory June 20, 2001 Wired-side SNMP WEP key exposure in 802.11b Access Points Synopsis: Internet Security Systems ISS X-Force has discovered a vulnerability in several 802.11b Access Point devices. This problem may reveal the Wired Equivalent Privacy WEP key...