242 matches found
CVE-2025-39864 wifi: cfg80211: fix use-after-free in cmp_bss()
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-free in cmpbss Following bssfree quirk introduced in commit 776b3580178f "cfg80211: track hidden SSID networks properly", adjust cfg80211updateknownbss to free the last beacon frame elements only if...
CVE-2025-39864
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-free in cmpbss Following bssfree quirk introduced in commit 776b3580178f "cfg80211: track hidden SSID networks properly", adjust cfg80211updateknownbss to free the last beacon frame elements only if...
CVE-2025-39864 wifi: cfg80211: fix use-after-free in cmp_bss()
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-free in cmpbss Following bssfree quirk introduced in commit 776b3580178f "cfg80211: track hidden SSID networks properly", adjust cfg80211updateknownbss to free the last beacon frame elements only if...
CVE-2022-49942
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected When we are not connected to a channel, sending channel "switch" announcement doesn't make any sense. The BSS list is empty in that case. This causes the fo...
CVE-2022-49942 wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected When we are not connected to a channel, sending channel "switch" announcement doesn't make any sense. The BSS list is empty in that case. This causes the fo...
CVE-2022-49942
CVE-2022-49942 affects the Linux kernel wifi/mac80211 code. The issue occurs when CSA (channel switch announcement) is finalized in IBSS mode while the device is not connected to a channel; the BSS list is empty, cfg80211_get_bss() can return NULL, triggering a WARN_ON() in ieee80211_ibss_csa_bea...
CVE-2014-3447
BSS Continuity CMS 4.2.22640.0 has a Remote Denial Of Service vulnerability...
CVE-2014-3448
BSS Continuity CMS 4.2.22640.0 has a Remote Code Execution vulnerability due to unauthenticated file upload...
CVE-2014-3449
BSS Continuity CMS 4.2.22640.0 has an Authentication Bypass vulnerability...
CVE-2022-49876 wifi: mac80211: fix general-protection-fault in ieee80211_subif_start_xmit()
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix general-protection-fault in ieee80211subifstartxmit When device is running and the interface status is changed, the gpf issue is triggered. The problem triggering process is as follows: Thread A: Thread B...
PT-2025-38571
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the wifi subsystem, specifically in the cfg80211 component, leading to a use-after-free condition in the cmp bss function. This issue was addresse...
The vulnerability of the Linux operating system’s kernel WiFi component, which allows a hacker to increase their privileges within the system
The vulnerability of the wilcparsejoinbssparam function in the Linux kernel-based WiFi component is related to errors that occur after deallocation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...
AZL-60303 CVE-2022-49303 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8192eu: Fix deadlock in rtwjoinbsseventprehandle There is a deadlock in rtwjoinbsseventprehandle, which is shown below: Thread 1 | Thread 2 | settimer rtwjoinbsseventprehandle| modtimer spinlockbh //1 | wait ...
UBUNTU-CVE-2022-49303
In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8192eu: Fix deadlock in rtwjoinbsseventprehandle There is a deadlock in rtwjoinbsseventprehandle, which is shown below: Thread 1 | Thread 2 | settimer rtwjoinbsseventprehandle| modtimer spinlockbh //1 | wait ...
CVE-2022-49311 drivers: staging: rtl8192bs: Fix deadlock in rtw_joinbss_event_prehandle()
In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8192bs: Fix deadlock in rtwjoinbsseventprehandle There is a deadlock in rtwjoinbsseventprehandle, which is shown below: Thread 1 | Thread 2 | settimer rtwjoinbsseventprehandle| modtimer spinlockbh //1 | wait ...
CVE-2024-13152
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BSS Software Mobuy Online Machinery Monitoring Panel allows SQL Injection. This issue affects Mobuy Online Machinery Monitoring Panel: before 2.0...
CVE-2024-13152 SQLi in BSS Software's Mobuy Online Machinery Monitoring Panel
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BSS Software Mobuy Online Machinery Monitoring Panel allows SQL Injection. This issue affects Mobuy Online Machinery Monitoring Panel: before 2.0...
CVE-2024-13152 SQLi in BSS Software's Mobuy Online Machinery Monitoring Panel
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BSS Software Mobuy Online Machinery Monitoring Panel allows SQL Injection. This issue affects Mobuy Online Machinery Monitoring Panel: before 2.0...
CVE-2024-33025
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE...
CVE-2024-33073
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE...