Lucene search
K

71 matches found

RedhatCVE
RedhatCVE
added 4 days ago6 views

CVE-2026-58374

A flaw was found in hostapd. An unauthenticated attacker within wireless range can send a specially crafted management frame during Wi-Fi 7 IEEE 802.11be Multi-Link Operation MLO association request processing. This crafted frame, containing a malformed Multi-Link Element or Per-STA Profile...

7.1CVSS6AI score0.00282EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2026/07/01 3:14 a.m.5 views

SUSE CVE-2026-58374

In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 IEEE 802.11be Multi-Link Operation MLO association request processing allows an unauthenticated attacker within wireless range to send a crafted management frame containing a malformed Multi-Link Element or Per-STA Profile...

7.1CVSS6AI score0.00282EPSS
Exploits0References3
OSV
OSV
added 2026/06/30 1:19 p.m.3 views

UBUNTU-CVE-2026-58374

In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 IEEE 802.11be Multi-Link Operation MLO association request processing allows an unauthenticated attacker within wireless range to send a crafted management frame containing a malformed Multi-Link Element or Per-STA Profile...

7.1CVSS5.8AI score0.00282EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/30 12:35 p.m.8 views

EUVD-2026-40306

In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 IEEE 802.11be Multi-Link Operation MLO association request processing allows an unauthenticated attacker within wireless range to send a crafted management frame containing a malformed Multi-Link Element or Per-STA Profile...

6.5CVSS5.8AI score0.00282EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/30 12:35 p.m.33 views

CVE-2026-58374

In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 IEEE 802.11be Multi-Link Operation MLO association request processing allows an unauthenticated attacker within wireless range to send a crafted management frame containing a malformed Multi-Link Element or Per-STA Profile...

6.5CVSS0.00282EPSS
Exploits0References5
OSV
OSV
added 2026/06/30 12:35 p.m.3 views

CVE-2026-58374

In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 IEEE 802.11be Multi-Link Operation MLO association request processing allows an unauthenticated attacker within wireless range to send a crafted management frame containing a malformed Multi-Link Element or Per-STA Profile...

6.5CVSS6AI score0.00282EPSS
Exploits0References7
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Staging: rtl8723bs: Fixed a stack buffer overflow issue during the parsing of the OnAssocReq IE. The length of the Supported Rates IE from an incoming Association Request frame was directly used as the length for the memcpy...

7AI score0.00198EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: ath12k – A firmware crash occurred due to an invalid peer NSS value. Currently, if the access point receives an association request containing an Extended HE Capabilities Information Element with an invalid MCS-NSS, it will...

5.5CVSS5.4AI score0.00234EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/12/17 12:24 a.m.6 views

SUSE CVE-2025-68255

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing The Supported Rates IE length from an incoming Association Request frame was used directly as the memcpy length when copying into a fixed-size 16-byte stack...

6.3CVSS7AI score0.00198EPSS
Exploits0References20
EUVD
EUVD
added 2025/12/16 3:30 p.m.4 views

EUVD-2025-203742

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing The Supported Rates IE length from an incoming Association Request frame was used directly as the memcpy length when copying into a fixed-size 16-byte stack...

6.5AI score0.00198EPSS
Exploits0References5
NVD
NVD
added 2025/12/16 3:15 p.m.6 views

CVE-2025-68255

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing The Supported Rates IE length from an incoming Association Request frame was used directly as the memcpy length when copying into a fixed-size 16-byte stack...

0.00198EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/12/16 3:15 p.m.6 views

CVE-2025-68255

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing The Supported Rates IE length from an incoming Association Request frame was used directly as the memcpy length when copying into a fixed-size 16-byte stack...

6.1AI score0.00198EPSS
Exploits0References35
OSV
OSV
added 2025/12/16 3:15 p.m.5 views

UBUNTU-CVE-2025-68255

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing The Supported Rates IE length from an incoming Association Request frame was used directly as the memcpy length when copying into a fixed-size 16-byte stack...

6.3AI score0.00198EPSS
Exploits0References37
ATTACKERKB
ATTACKERKB
added 2025/12/16 2:44 p.m.3 views

CVE-2025-68255

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing The Supported Rates IE length from an incoming Association Request frame was used directly as the memcpy length when copying into a fixed-size 16-byte stack...

5.5AI score0.00198EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2025/12/16 2:44 p.m.18 views

CVE-2025-68255

CVE-2025-68255 affects the Linux kernel staging rtl8723bs driver. The OnAssocReq Information Element parsing used the incoming Supported Rates IE length directly as the memcpy length into a fixed 16-byte stack buffer, enabling a stack overflow when an attacker advertises a longer IE. The fix clam...

6.6AI score0.00198EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/12/16 2:44 p.m.24 views

CVE-2025-68255 staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing The Supported Rates IE length from an incoming Association Request frame was used directly as the memcpy length when copying into a fixed-size 16-byte stack...

0.00198EPSS
Exploits0References8
OSV
OSV
added 2025/12/16 2:44 p.m.7 views

CVE-2025-68255 staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing The Supported Rates IE length from an incoming Association Request frame was used directly as the memcpy length when copying into a fixed-size 16-byte stack...

6.9AI score0.00198EPSS
Exploits0References11
NVD
NVD
added 2025/12/08 5:16 p.m.6 views

CVE-2025-48632

In setDisplayName of AssociationRequest.java, there is a possible way to cause CDM associations to persist after the user has disassociated them due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is n...

7.8CVSS0.00075EPSS
Exploits0References2
CVE
CVE
added 2025/12/08 4:57 p.m.18 views

CVE-2025-48632

In setDisplayName of AssociationRequest.java, there is a potential vulnerability where CDM associations can persist after user disassociation due to improper input validation. This could enable local privilege escalation with no additional privileges and without user interaction. The CVE-2025-486...

7.8CVSS6.5AI score0.00075EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/08 4:57 p.m.3 views

CVE-2025-48632

In setDisplayName of AssociationRequest.java, there is a possible way to cause CDM associations to persist after the user has disassociated them due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is n...

6.5AI score0.00075EPSS
Exploits0References2
Rows per page
Query Builder