Lucene search
K

110 matches found

RedhatCVE
RedhatCVE
added 2022/01/24 7:58 p.m.80 views

CVE-2022-23303

The implementations of EAP-pwd in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. The highest threat from this vulnerability is to availability, confidentiality and integrity...

9.8CVSS3.9AI score0.02944EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/01/19 12:0 a.m.57 views

Slackware Linux 14.0 / 14.1 / 14.2 / current wpa_supplicant Multiple Vulnerabilities (SSA:2022-019-01)

The version of wpasupplicant installed on the remote host is prior to 2.10 / 2.9. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2022-019-01 advisory. - The implementations of EAP-PWD in hostapd and wpasupplicant are vulnerable to side-channel attacks as a result ...

9.8CVSS7AI score0.03739EPSS
Exploits0References3
OSV
OSV
added 2022/01/18 7:29 p.m.12 views

MGASA-2022-0025 Updated wpa_supplicant packages fix security vulnerability

The implementations of SAE in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494...

9.8CVSS6.9AI score0.02944EPSS
Exploits0References4
OSV
OSV
added 2022/01/17 2:15 a.m.39 views

CVE-2022-23304

The implementations of EAP-pwd in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495...

9.8CVSS6.7AI score
Exploits0References4
NVD
NVD
added 2022/01/17 2:15 a.m.49 views

CVE-2022-23303

The implementations of SAE in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494...

9.8CVSS0.02944EPSS
Exploits0References4
NVD
NVD
added 2022/01/17 2:15 a.m.32 views

CVE-2022-23304

The implementations of EAP-pwd in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495...

9.8CVSS0.01903EPSS
Exploits0References4
OSV
OSV
added 2022/01/17 2:15 a.m.31 views

CVE-2022-23303

The implementations of SAE in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494...

9.8CVSS7AI score
Exploits0References4
OSV
OSV
added 2022/01/17 2:15 a.m.10 views

AZL-7747 CVE-2022-23303 affecting package wpa_supplicant for versions less than 2.10-1

The implementations of SAE in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494...

9.8CVSS7.2AI score0.02944EPSS
Exploits0References1
Prion
Prion
added 2022/01/17 2:15 a.m.31 views

Default configuration

The implementations of SAE in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494...

6.8CVSS6AI score0.03739EPSS
Exploits0References3Affected Software3
Prion
Prion
added 2022/01/17 2:15 a.m.33 views

Default configuration

The implementations of EAP-pwd in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495...

6.8CVSS5.8AI score0.03449EPSS
Exploits0References3Affected Software3
UbuntuCve
UbuntuCve
added 2022/01/17 2:15 a.m.22 views

CVE-2022-23303

The implementations of SAE in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494...

9.8CVSS7.1AI score0.02944EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2022/01/17 2:15 a.m.28 views

CVE-2022-23304

The implementations of EAP-pwd in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495...

9.8CVSS7.1AI score0.01903EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/01/17 12:0 a.m.43 views

CVE-2022-23303

The implementations of SAE in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494...

6.6AI score0.02944EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/01/17 12:0 a.m.41 views

CVE-2022-23304

The implementations of EAP-pwd in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495...

6.4AI score0.01903EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/01/17 12:0 a.m.4 views

EAP-pwd 加密问题漏洞

EAP-pwd is an EAP authentication method that uses a shared password for authentication. A cryptographic issue vulnerability exists in EAP-pwd that stems from a cache access mode error in the hostapd and wpa supplicant components of the product. An attacker could use this vulnerability to launch a...

9.8CVSS7.3AI score0.01903EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2022/01/17 12:0 a.m.55 views

CVE-2022-23304

The implementations of EAP-pwd in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495...

9.8CVSS2.4AI score0.01903EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/01/17 12:0 a.m.41 views

CVE-2022-23303

The implementations of SAE in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494...

9.8CVSS7AI score0.02944EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/01/17 12:0 a.m.61 views

CVE-2022-23304

The implementations of EAP-pwd in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495...

9.8CVSS6.5AI score0.01903EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2019:1535-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.7AI score0.98745EPSS
Exploits9References2
Positive Technologies
Positive Technologies
added 2020/12/31 12:0 a.m.9 views

PT-2020-6448 · Pypi +1 · Flask-Caching +1

Name of the Vulnerable Software and Affected Versions: Flask-Caching versions through 1.10.1 Description: The Flask-Caching extension relies on Pickle for serialization, which may lead to remote code execution or local privilege escalation. If an attacker gains access to cache storage, they can...

9.8CVSS7.9AI score0.07288EPSS
Exploits3References21
Rows per page
Query Builder