61 matches found
CVE-2026-7422 MAC Address Validation Bypass in FreeRTOS-Plus-TCP IPv4 and IPv6 Packet Processing
Insufficient packet validation in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to bypass all checksum and minimum-size validation by spoofing the Ethernet source MAC address to match one of the device's own registered endpoints, because the loopback detection...
CVE-2026-7422 MAC Address Validation Bypass in FreeRTOS-Plus-TCP IPv4 and IPv6 Packet Processing
Insufficient packet validation in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to bypass all checksum and minimum-size validation by spoofing the Ethernet source MAC address to match one of the device's own registered endpoints, because the loopback detection...
CVE-2026-7422
CVE-2026-7422 affects FreeRTOS-Plus-TCP; insufficient packet validation in IPv4/IPv6 processing (before V4.2.6 and V4.4.1) allows an adjacent attacker to bypass checksum and minimum-size checks by spoofing the Ethernet source MAC to a local endpoint, since loopback-detection skips validation for ...
CVE-2026-23809
CVE-2026-23809 describes a MAC address spoofing-based technique in Wi‑Fi environments that use multiple BSSIDs, enabling bypass of inter‑BSSID isolation by exploiting the relationship between BSSIDs and their virtual ports. Impact stated across sources includes redirecting/intercepting victim tra...
CVE-2026-23809 MAC Address Spoofing leads to Inter-BSSID Isolation Bypass Resulting in Traffic Redirection
A technique has been identified that adapts a known port-stealing method to Wi-Fi environments that use multiple BSSIDs. By leveraging the relationship between BSSIDs and their associated virtual ports, an attacker could potentially bypass inter-BSSID isolation controls. Successful exploitation m...
SonicWALL TZ Insufficient Verification of Data Authenticity (CVE-2022-47522)
The IEEE 802.11 specifications through 802.11ax allow physically proximate attackers to intercept possibly cleartext target-destined frames by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to the access point such as authentication...
EUVD-2017-18407
Malware in sbrugna...
EUVD-2002-1916
Malware in sbrugna...
EUVD-1999-1067
Malware in sbrugna...
EUVD-2020-3404
Malware in sbrugna...
EUVD-2015-1741
Malware in sbrugna...
EUVD-2025-7236
Malicious code in bioql PyPI...
EUVD-2024-40035
Malicious code in bioql PyPI...
EUVD-2025-6709
Malicious code in bioql PyPI...
User Impersonation
Overview org.onosproject:onos-core-net is an ONOS network control core subsystem. Affected versions of this package are vulnerable to User Impersonation through the manipulation of IP/MAC address mappings. An attacker can send crafted messages containing spoofed IP/MAC addresses, replacing those ...
CVE-2024-50380
Snap One OVRC cloud uses the MAC address as an identifier to provide information when requested. An attacker can impersonate other devices by supplying enumerated MAC addresses and receive sensitive information about the device...
CVE-2025-30142
An issue was discovered on G-Net Dashcam BB GONX devices. Bypassing of Device Pairing can occur. It uses MAC address verification as the sole mechanism for recognizing paired devices, allowing attackers to bypass authentication. By capturing the MAC address of an already-paired device through ARP...
CVE-2025-30110
On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an attacker to bypass authentication by spoofing an already-paired MAC address that can be captured via an ARP scan...
CVE-2025-30142
An issue was discovered on G-Net Dashcam BB GONX devices. Bypassing of Device Pairing can occur. It uses MAC address verification as the sole mechanism for recognizing paired devices, allowing attackers to bypass authentication. By capturing the MAC address of an already-paired device through ARP...
CVE-2025-30110
On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an attacker to bypass authentication by spoofing an already-paired MAC address that can be captured via an ARP scan...