56 matches found
EUVD-2017-4596
Malware in sbrugna...
EUVD-2020-3618
Malware in sbrugna...
EUVD-2017-4597
Malware in sbrugna...
EUVD-2025-29030
Malicious code in bioql PyPI...
CVE-2025-7448
Wi-SUN unexpected 4- Way Handshake packet receptions may lead to predictable keys and potentially leading to Man in the middle MitM attack...
CVE-2025-7448
Wi-SUN unexpected 4- Way Handshake packet receptions may lead to predictable keys and potentially leading to Man in the middle MitM attack...
CVE-2025-7448
CVE-2025-7448 affects Silicon Labs Wi-SUN Stack. The issue arises from unexpected 4‑Way Handshake packet receptions, which can yield predictable cryptographic keys and potentially enable a Man-in-the-Middle (MitM) attack. Reported by multiple sources, the vulnerability is tied to Wi-SUN Handshake...
CVE-2025-7448 Man in the middle (MitM) attack vulnerability in Wi-SUN library
Wi-SUN unexpected 4- Way Handshake packet receptions may lead to predictable keys and potentially leading to Man in the middle MitM attack...
CVE-2025-7448 Man in the middle (MitM) attack vulnerability in Wi-SUN library
Wi-SUN unexpected 4- Way Handshake packet receptions may lead to predictable keys and potentially leading to Man in the middle MitM attack...
Silicon Labs Wi-SUN Stack 安全漏洞
Silicon Labs Wi-SUN Stack is a communications stack from Silicon Labs, Inc. A security vulnerability exists in Silicon Labs Wi-SUN Stack that stems from the fact that accidental reception of a 4-Way Handshake packet may result in a predictable key, potentially triggering a man-in-the-middle attac...
PT-2025-37298
Name of the Vulnerable Software and Affected Versions: Wi-SUN affected versions not specified Description: The Wi-SUN protocol is susceptible to a flaw related to unexpected 4-Way Handshake packet receptions. This can result in predictable keys, potentially enabling a Man-in-the-Middle MitM attac...
CVE-2020-11264
Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injection in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...
CVE-2023-50809
In certain Sonos products before S1 Release 11.12 and S2 release 15.9, the mt7615.ko wireless driver does not properly validate an information element during negotiation of a WPA2 four-way handshake. This lack of validation leads to a stack buffer overflow. This can result in remote code executio...
UBUNTU-CVE-2023-52424
The IEEE 802.11 standard sometimes enables an adversary to trick a victim into connecting to an unintended or untrusted network with Home WEP, Home WPA3 SAE-loop. Enterprise 802.1X/EAP, Mesh AMPE, or FILS, aka an "SSID Confusion" issue. This occurs because the SSID is not always used to derive th...
RHEL 5 : wpa_supplicant (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - wpasupplicant: local configuration update allows privilege escalation CVE-2016-4477 - wpasupplicant:...
SUSE CVE-2017-13077
Wi-Fi Protected Access WPA and WPA2 allows reinstallation of the Pairwise Transient Key PTK Temporal Key TK during the four-way handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames...
SUSE CVE-2017-13078
Wi-Fi Protected Access WPA and WPA2 allows reinstallation of the Group Temporal Key GTK during the four-way handshake, allowing an attacker within radio range to replay frames from access points to clients...
SUSE CVE-2017-13079
Wi-Fi Protected Access WPA and WPA2 that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key IGTK during the four-way handshake, allowing an attacker within radio range to spoof frames from access points to clients...
CVE-2020-11264
Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injection in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...
Authentication flaw
Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injection in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT,...