EUVD-2025-27984

Malicious code in bioql PyPI...

CVE-2025-41378

The SSID field is not parsed correctly and can be used to inject commands into the hostpad.conf file. This can be exploited by an attacker to extend his knowledge of the system and compromise other devices. The information is filtered by the logs function of the web panel...

CVE-2025-41378

The CVE-2025-41378 entry maps to the Iridium Certus 700 (Intellian) vulnerability where the SSID field is not parsed correctly, enabling command injection into the hostpad.conf file. Consequence described across sources is attacker access to system details and potential compromise of additional d...

Intellian Iridium Certus 700 输入验证错误漏洞

Intellian Iridium Certus 700 is a marine satellite Internet system from Intellian Corporation in South Korea. An input validation error vulnerability exists in Intellian Iridium Certus 700 version 1.0.1, which stems from incorrect parsing of the SSID field and could lead to the injection of...

Updated wpa_supplicant packages fix security vulnerability

Updated wpasupplicant and hostpad packages fix security vulnerability: A vulnerability was discovered in wpasupplicant. When Access Point AP mode and Protected Management Frames PMF IEEE 802.11w are enabled, wpasupplicant does not perform enough validation on the source address of some received...