Lucene search
K

61 matches found

Cvelist
Cvelist
added 2026/04/29 6:35 p.m.30 views

CVE-2026-7422 MAC Address Validation Bypass in FreeRTOS-Plus-TCP IPv4 and IPv6 Packet Processing

Insufficient packet validation in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to bypass all checksum and minimum-size validation by spoofing the Ethernet source MAC address to match one of the device's own registered endpoints, because the loopback detection...

7.1CVSS0.00177EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/29 6:35 p.m.5 views

CVE-2026-7422 MAC Address Validation Bypass in FreeRTOS-Plus-TCP IPv4 and IPv6 Packet Processing

Insufficient packet validation in FreeRTOS-Plus-TCP before V4.2.6 and V4.4.1 allows an adjacent network actor to bypass all checksum and minimum-size validation by spoofing the Ethernet source MAC address to match one of the device's own registered endpoints, because the loopback detection...

7.1CVSS5.3AI score0.00177EPSS
Exploits0References4
CVE
CVE
added 2026/04/29 6:35 p.m.15 views

CVE-2026-7422

CVE-2026-7422 affects FreeRTOS-Plus-TCP; insufficient packet validation in IPv4/IPv6 processing (before V4.2.6 and V4.4.1) allows an adjacent attacker to bypass checksum and minimum-size checks by spoofing the Ethernet source MAC to a local endpoint, since loopback-detection skips validation for ...

7.1CVSS5.3AI score0.00177EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/03/04 4:10 p.m.24 views

CVE-2026-23809

CVE-2026-23809 describes a MAC address spoofing-based technique in Wi‑Fi environments that use multiple BSSIDs, enabling bypass of inter‑BSSID isolation by exploiting the relationship between BSSIDs and their virtual ports. Impact stated across sources includes redirecting/intercepting victim tra...

7.6CVSS5.8AI score0.00259EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/04 4:10 p.m.37 views

CVE-2026-23809 MAC Address Spoofing leads to Inter-BSSID Isolation Bypass Resulting in Traffic Redirection

A technique has been identified that adapts a known port-stealing method to Wi-Fi environments that use multiple BSSIDs. By leveraging the relationship between BSSIDs and their associated virtual ports, an attacker could potentially bypass inter-BSSID isolation controls. Successful exploitation m...

5.4CVSS0.00259EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/02/24 12:0 a.m.6 views

SonicWALL TZ Insufficient Verification of Data Authenticity (CVE-2022-47522)

The IEEE 802.11 specifications through 802.11ax allow physically proximate attackers to intercept possibly cleartext target-destined frames by spoofing a target's MAC address, sending Power Save frames to the access point, and then sending other frames to the access point such as authentication...

7.5CVSS5.5AI score0.00897EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-18407

Malware in sbrugna...

5.9CVSS5.9AI score0.01392EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1916

Malware in sbrugna...

5CVSS6.4AI score0.01346EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-1999-1067

Malware in sbrugna...

10CVSS6.4AI score0.02622EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-3404

Malware in sbrugna...

9.1CVSS9AI score0.00717EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-1741

Malware in sbrugna...

5.3CVSS5.5AI score0.01438EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-7236

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00261EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-40035

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00284EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-6709

Malicious code in bioql PyPI...

8.1CVSS6.6AI score0.00265EPSS
Exploits0References3
Snyk
Snyk
added 2025/05/29 6:44 p.m.7 views

User Impersonation

Overview org.onosproject:onos-core-net is an ONOS network control core subsystem. Affected versions of this package are vulnerable to User Impersonation through the manipulation of IP/MAC address mappings. An attacker can send crafted messages containing spoofed IP/MAC addresses, replacing those ...

9.8CVSS6.8AI score0.00347EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:47 a.m.9 views

CVE-2024-50380

Snap One OVRC cloud uses the MAC address as an identifier to provide information when requested. An attacker can impersonate other devices by supplying enumerated MAC addresses and receive sensitive information about the device...

8.7CVSS6.6AI score0.0048EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/20 4:11 p.m.9 views

CVE-2025-30142

An issue was discovered on G-Net Dashcam BB GONX devices. Bypassing of Device Pairing can occur. It uses MAC address verification as the sole mechanism for recognizing paired devices, allowing attackers to bypass authentication. By capturing the MAC address of an already-paired device through ARP...

8.1CVSS7.3AI score0.00265EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/20 4:9 p.m.9 views

CVE-2025-30110

On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an attacker to bypass authentication by spoofing an already-paired MAC address that can be captured via an ARP scan...

6.5CVSS7.4AI score0.00261EPSS
Exploits0References1
NVD
NVD
added 2025/03/18 8:15 p.m.6 views

CVE-2025-30142

An issue was discovered on G-Net Dashcam BB GONX devices. Bypassing of Device Pairing can occur. It uses MAC address verification as the sole mechanism for recognizing paired devices, allowing attackers to bypass authentication. By capturing the MAC address of an already-paired device through ARP...

8.1CVSS0.00265EPSS
Exploits0References2
NVD
NVD
added 2025/03/18 3:16 p.m.7 views

CVE-2025-30110

On IROAD X5 devices, a Bypass of Device Pairing can occur via MAC Address Spoofing. The dashcam's pairing mechanism relies solely on MAC address verification, allowing an attacker to bypass authentication by spoofing an already-paired MAC address that can be captured via an ARP scan...

6.5CVSS0.00261EPSS
Exploits0References2
Rows per page
Query Builder