Lucene search
K

48 matches found

Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.6 views

PT-2026-24622

Note: This vulnerability was originally reported to the Google OSS VRP Issue ID: 477542544. The Google Security Team requested that I coordinate directly with the Envoy maintainers for triage and remediation. I am submitting this report here to facilitate that process. Technical Details I have...

5.9CVSS6.2AI score
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-18770

Malware in sbrugna...

6.5CVSS6.8AI score0.04173EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2025/07/24 12:0 a.m.10 views

PT-2025-46606

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s ath12k driver related to peer lookup within the ath12k dp mon rx deliver msdu function. Specifically, the rxcb-peer id is not correctly updated in...

5.2CVSS5.5AI score0.00517EPSS
Exploits4References391
RedhatCVE
RedhatCVE
added 2025/05/22 8:41 a.m.9 views

CVE-2019-18989

A partial authentication bypass vulnerability exists on Mediatek MT7620N 1.06 devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected WLAN router where the packet is routed through the network. If successful, a response is sent back as an encrypted frame, which wou...

6.1CVSS6.7AI score0.00751EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:24 a.m.8 views

CVE-2019-18990

A partial authentication bypass vulnerability exists on Realtek RTL8812AR 1.21WW, RTL8196D 1.0.0, RTL8192ER 2.10, and RTL8881AN 1.09 devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected WLAN router where the packet is routed through the network. If successful, a...

6.1CVSS6.8AI score0.00751EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2020-26143

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frame...

6.5CVSS7AI score0.04173EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/26 12:0 a.m.9 views

PT-2024-26789

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the wifi: cfg80211 component in the Linux kernel, where the A-MSDU format is not checked carefully enough. If it appears that there is another subframe in the...

7.1CVSS5.5AI score0.00233EPSS
Exploits0
OSV
OSV
added 2024/01/22 1:15 a.m.7 views

CVE-2024-23752

GenerateSDFPipeline in syntheticdataframe in PandasAI aka pandas-ai through 1.5.17 allows attackers to trigger the generation of arbitrary Python code that is executed by SDFCodeExecutor. An attacker can create a dataframe that provides an English language specification of this Python code. NOTE:...

9.8CVSS9.6AI score
Exploits0References1
NVD
NVD
added 2024/01/22 1:15 a.m.36 views

CVE-2024-23752

GenerateSDFPipeline in syntheticdataframe in PandasAI aka pandas-ai through 1.5.17 allows attackers to trigger the generation of arbitrary Python code that is executed by SDFCodeExecutor. An attacker can create a dataframe that provides an English language specification of this Python code. NOTE:...

9.8CVSS9.6AI score0.01006EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2023/04/11 12:0 a.m.41 views

Siemens SCALANCE Improper Input Validation (CVE-2020-26143)

An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration. Thi...

6.5CVSS7AI score0.04173EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:17 a.m.4 views

SUSE CVE-2005-2627

Multiple integer underflows in Kismet before 2005-08-R1 allow remote attackers to execute arbitrary code via 1 kernel headers in a pcap file or 2 data frame dissection, which leads to heap-based buffer overflows...

7.5CVSS8.1AI score0.04733EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 3:53 a.m.10 views

SUSE CVE-2020-26140

An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration...

6.5CVSS7AI score0.02923EPSS
Exploits0References5
NVD
NVD
added 2022/10/31 6:15 p.m.24 views

CVE-2022-2741

The denial-of-service can be triggered by transmitting a carefully crafted CAN frame on the same CAN network as the vulnerable node. The frame must have a CAN ID matching an installed filter in the vulnerable node this can easily be guessed based on CAN traffic analyses. The frame must contain th...

8.2CVSS0.00591EPSS
Exploits0References1
Prion
Prion
added 2022/10/31 6:15 p.m.21 views

Code injection

The denial-of-service can be triggered by transmitting a carefully crafted CAN frame on the same CAN network as the vulnerable node. The frame must have a CAN ID matching an installed filter in the vulnerable node this can easily be guessed based on CAN traffic analyses. The frame must contain th...

5CVSS7.5AI score0.00591EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/08/01 9:35 p.m.11 views

CVE-2022-35922 Memory allocation based on untrusted length in rust-websocket

Rust-WebSocket is a WebSocket RFC6455 library written in Rust. In versions prior to 0.26.5 untrusted websocket connections can cause an out-of-memory OOM process abort in a client or a server. The root cause of the issue is during dataframe parsing. Affected versions would allocate a buffer based...

7.5CVSS7.5AI score0.01454EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/05/24 12:0 a.m.8 views

The vulnerability of implementations of algorithms WEP, WPA, WPA2, and WPA3 for the 6.1316.1209 Wi-Fi adapter ALFA driver allows a hacker to inject arbitrary data frames.

The vulnerability of implementations of WEP, WPA, WPA2, and WPA3 drivers 6.1316.1209 for Wi-Fi adapters ALFA exists due to the failure to address certain security measures. Exploiting this vulnerability allows a remote attacker to inject arbitrary data frames...

6.5CVSS7.1AI score0.02923EPSS
Exploits0References15Affected Software4
CVE
CVE
added 2021/05/11 7:36 p.m.336 views

CVE-2020-26143

CVE-2020-26143 describes a fragmentation/plaintext-frame acceptance vulnerability in wireless implementations that can allow packet injection within protected networks. Connected docs confirm the issue exists in multiple vendor advisories and disclosures related to FragAttacks, including Arista’s...

6.5CVSS6.7AI score0.04173EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2021/05/11 7:34 p.m.55 views

CVE-2020-26140

Removed by vendor...

6.5CVSS7.1AI score0.02923EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/05/11 12:0 a.m.14 views

PT-2021-3061 · Alfa +4 · Alfa Windows 10 Driver +4

Name of the Vulnerable Software and Affected Versions: ALFA Windows 10 driver version 1030.36.604 Description: An issue exists in the WEP, WPA, WPA2, and WPA3 implementations of the ALFA Windows 10 driver, allowing an adversary to inject arbitrary data frames into a protected Wi-Fi network by...

8.8CVSS7.6AI score0.07604EPSS
Exploits16References251
Cvelist
Cvelist
added 2021/01/13 6:10 p.m.38 views

CVE-2021-3031 PAN-OS: Information exposure in Ethernet data frame construction (Etherleak)

Padding bytes in Ethernet packets on PA-200, PA-220, PA-500, PA-800, PA-2000 Series, PA-3000 Series, PA-3200 Series, PA-5200 Series, and PA-7000 Series firewalls are not cleared before the data frame is created. This leaks a small amount of random information from the firewall memory into the...

4.3CVSS4.9AI score0.00538EPSS
Exploits0References1
Rows per page
Query Builder