Packet Injection

kernel is vulnerable to packet injection. The vulnerability exists due to the WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network...

Packet Injection

kernel is vulnerable to packet injection. The vulnerability exists due to the WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network...

Denial Of Service (DoS)

kernel is vulnerable to Denial Of Service DoS. An Access Point AP forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be abused in projected Wi-Fi networks to launch denial-of-service attacks against connected clients and make...

Fedora: Security Advisory for pfstools (FEDORA-2021-df1fa3d3e0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-37910

ASUS routers Wi-Fi protected access protocol WPA2 and WPA3-SAE has improper control of Interaction frequency vulnerability, an unauthenticated attacker can remotely disconnect other users' connections by sending specially crafted SAE authentication frames...

CVE-2021-37910

ASUS routers Wi-Fi protected access protocol WPA2 and WPA3-SAE has improper control of Interaction frequency vulnerability, an unauthenticated attacker can remotely disconnect other users' connections by sending specially crafted SAE authentication frames...

ASUS routers 安全漏洞

ASUS routers is a router app from ASUS, Taiwan, China. A security vulnerability exists in ASUS routers, which stems from an improperly controlled interaction frequency in the ASUS routers Wi-Fi protected access protocol WPA2 and WPA3-SAE, which allows an unauthenticated attacker to remotely...

CVE-2021-43573

A buffer overflow was discovered on Realtek RTL8195AM devices before 2.0.10. It exists in the client code when processing a malformed IE length of HT capability information in the Beacon and Association response frame...

Realtek RTL8195AM 缓冲区错误漏洞

The Realtek RTL8195AM is an IoT microcontroller from Realtek Semiconductor Realtek of Taiwan, China. A buffer error vulnerability exists in Realtek RTL8195AM versions prior to 2.0.10, which stems from a buffer overflow vulnerability in the incorrect IE length of the device's processing of HT...

EulerOS 2.0 SP5 : kernel (EulerOS-SA-2021-2663)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The 802.11 standard that underpins Wi-Fi Protected Access WPA, WPA2, and WPA3 and Wired Equivalent Privacy WEP doesn't require that received...

Mozilla Firefox Security Advisory (MFSA2012-103) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

kernel: accepting unencrypted A-MSDU frames that start with RFC1042 header

A flaw was found in the Linux kernel, where the WiFi implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 ex., LLC/SNAP header for EAPOL. The highest threat from this vulnerability is to integrity...

kernel: Forwarding EAPOL from unauthenticated wifi client

Frames used for authentication and key management between the AP and connected clients. Some clients may take these redirected frames masquerading as control mechanisms from the AP...

kernel: not verifying TKIP MIC of fragmented frames

A vulnerability was found in Linux kernel's WiFi implementation. An attacker within wireless range can inject a control packet fragment where the kernel does not verify the Message Integrity Check authenticity of fragmented TKIP frames...

kernel: accepting plaintext broadcast fragments as full frames

A flaw was found in ath10khttrxprocrxfragindhl in drivers/net/wireless/ath/ath10k/httrx.c in the Linux kernel WiFi implementations, where it accepts a second or subsequent broadcast fragments even when sent in plaintext and then process them as full unfragmented frames. The highest threat from th...

kernel: accepting plaintext data frames in protected networks

A vulnerability was found in Linux kernel. Where the WiFi implementations accept plaintext frames in a protected WiFi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration...

Moderate: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

kernel: accepting plaintext broadcast fragments as full frames

A flaw was found in ath10khttrxprocrxfragindhl in drivers/net/wireless/ath/ath10k/httrx.c in the Linux kernel WiFi implementations, where it accepts a second or subsequent broadcast fragments even when sent in plaintext and then process them as full unfragmented frames. The highest threat from th...

kernel: accepting plaintext data frames in protected networks

A vulnerability was found in Linux kernel. Where the WiFi implementations accept plaintext frames in a protected WiFi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration...

kernel: accepting unencrypted A-MSDU frames that start with RFC1042 header

A flaw was found in the Linux kernel, where the WiFi implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 ex., LLC/SNAP header for EAPOL. The highest threat from this vulnerability is to integrity...