48 matches found
PT-2026-24622
Note: This vulnerability was originally reported to the Google OSS VRP Issue ID: 477542544. The Google Security Team requested that I coordinate directly with the Envoy maintainers for triage and remediation. I am submitting this report here to facilitate that process. Technical Details I have...
EUVD-2020-18770
Malware in sbrugna...
PT-2025-46606
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s ath12k driver related to peer lookup within the ath12k dp mon rx deliver msdu function. Specifically, the rxcb-peer id is not correctly updated in...
CVE-2019-18989
A partial authentication bypass vulnerability exists on Mediatek MT7620N 1.06 devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected WLAN router where the packet is routed through the network. If successful, a response is sent back as an encrypted frame, which wou...
CVE-2019-18990
A partial authentication bypass vulnerability exists on Realtek RTL8812AR 1.21WW, RTL8196D 1.0.0, RTL8192ER 2.10, and RTL8881AN 1.09 devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected WLAN router where the packet is routed through the network. If successful, a...
Linux Distros Unpatched Vulnerability : CVE-2020-26143
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frame...
PT-2024-26789
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the wifi: cfg80211 component in the Linux kernel, where the A-MSDU format is not checked carefully enough. If it appears that there is another subframe in the...
CVE-2024-23752
GenerateSDFPipeline in syntheticdataframe in PandasAI aka pandas-ai through 1.5.17 allows attackers to trigger the generation of arbitrary Python code that is executed by SDFCodeExecutor. An attacker can create a dataframe that provides an English language specification of this Python code. NOTE:...
CVE-2024-23752
GenerateSDFPipeline in syntheticdataframe in PandasAI aka pandas-ai through 1.5.17 allows attackers to trigger the generation of arbitrary Python code that is executed by SDFCodeExecutor. An attacker can create a dataframe that provides an English language specification of this Python code. NOTE:...
Siemens SCALANCE Improper Input Validation (CVE-2020-26143)
An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration. Thi...
SUSE CVE-2005-2627
Multiple integer underflows in Kismet before 2005-08-R1 allow remote attackers to execute arbitrary code via 1 kernel headers in a pcap file or 2 data frame dissection, which leads to heap-based buffer overflows...
SUSE CVE-2020-26140
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration...
CVE-2022-2741
The denial-of-service can be triggered by transmitting a carefully crafted CAN frame on the same CAN network as the vulnerable node. The frame must have a CAN ID matching an installed filter in the vulnerable node this can easily be guessed based on CAN traffic analyses. The frame must contain th...
Code injection
The denial-of-service can be triggered by transmitting a carefully crafted CAN frame on the same CAN network as the vulnerable node. The frame must have a CAN ID matching an installed filter in the vulnerable node this can easily be guessed based on CAN traffic analyses. The frame must contain th...
CVE-2022-35922 Memory allocation based on untrusted length in rust-websocket
Rust-WebSocket is a WebSocket RFC6455 library written in Rust. In versions prior to 0.26.5 untrusted websocket connections can cause an out-of-memory OOM process abort in a client or a server. The root cause of the issue is during dataframe parsing. Affected versions would allocate a buffer based...
The vulnerability of implementations of algorithms WEP, WPA, WPA2, and WPA3 for the 6.1316.1209 Wi-Fi adapter ALFA driver allows a hacker to inject arbitrary data frames.
The vulnerability of implementations of WEP, WPA, WPA2, and WPA3 drivers 6.1316.1209 for Wi-Fi adapters ALFA exists due to the failure to address certain security measures. Exploiting this vulnerability allows a remote attacker to inject arbitrary data frames...
CVE-2020-26143
CVE-2020-26143 describes a fragmentation/plaintext-frame acceptance vulnerability in wireless implementations that can allow packet injection within protected networks. Connected docs confirm the issue exists in multiple vendor advisories and disclosures related to FragAttacks, including Arista’s...
CVE-2020-26140
Removed by vendor...
PT-2021-3061 · Alfa +4 · Alfa Windows 10 Driver +4
Name of the Vulnerable Software and Affected Versions: ALFA Windows 10 driver version 1030.36.604 Description: An issue exists in the WEP, WPA, WPA2, and WPA3 implementations of the ALFA Windows 10 driver, allowing an adversary to inject arbitrary data frames into a protected Wi-Fi network by...
CVE-2021-3031 PAN-OS: Information exposure in Ethernet data frame construction (Etherleak)
Padding bytes in Ethernet packets on PA-200, PA-220, PA-500, PA-800, PA-2000 Series, PA-3000 Series, PA-3200 Series, PA-5200 Series, and PA-7000 Series firewalls are not cleared before the data frame is created. This leaks a small amount of random information from the firewall memory into the...