Lucene search
K

105 matches found

Ubuntu
Ubuntu
added 2019/09/18 2:4 p.m.93 views

USN-4136-2: wpa_supplicant and hostapd vulnerability

USN-4136-1 fixed a vulnerability in wpasupplicant. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that wpasupplicant incorrectly handled certain management frames. An attacker could possibly use this issue to...

6.5CVSS6.5AI score0.01214EPSS
Exploits0
OSV
OSV
added 2019/09/18 12:40 p.m.2 views

USN-4136-1 wpa vulnerability

It was discovered that wpasupplicant incorrectly handled certain management frames. An attacker could possibly use this issue to cause a denial of service...

6.5CVSS6.7AI score0.01214EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2019/09/18 12:40 p.m.95 views

USN-4136-1: wpa_supplicant and hostapd vulnerability

It was discovered that wpasupplicant incorrectly handled certain management frames. An attacker could possibly use this issue to cause a denial of service...

6.5CVSS6.5AI score0.01214EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/09/17 12:0 a.m.30 views

Debian DLA-1922-1 : wpa security update

hostapd and wpasupplicant when controlling AP mode did not perform sufficient source address validation for some received Management frames and this could result in ending up sending a frame that caused associated stations to incorrectly believe they were disconnected from the network even if...

6.5CVSS6.2AI score0.01214EPSS
Exploits0References3
Debian
Debian
added 2019/09/16 3:50 p.m.47 views

[SECURITY] [DLA 1922-1] wpa security update

Package : wpa Version : 2.3-1+deb8u9 CVE ID : CVE-2019-16275 Debian Bug : 940080 hostapd and wpasupplicant when controlling AP mode did not perform sufficient source address validation for some received Management frames and this could result in ending up sending a frame that caused associated...

6.5CVSS6.8AI score0.01214EPSS
Exploits0
OSV
OSV
added 2018/05/02 10:29 p.m.3 views

CVE-2018-0235

A vulnerability in the 802.11 frame validation functionality of the Cisco Wireless LAN Controller WLC could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service DoS condition. The vulnerability is due to incomplete input...

7.4CVSS5.8AI score
Exploits0References2
CNVD
CNVD
added 2017/11/03 12:0 a.m.5 views

Cisco Aironet 3800 Series Access Points Denial of Service Vulnerability

The Cisco Aironet 3800 Series Access Points are a set of wireless access point devices from Cisco, Inc. 802.11w Protected Management Frames PAF is one of the frame encryption protection components. A denial of service vulnerability exists in the Cisco Aironet 3800 series. The vulnerability arises...

6.1CVSS6.2AI score0.00569EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/11/02 12:0 a.m.43 views

Cisco Aironet Access Points Protected Management Frames User Denial of Service Vulnerability

A vulnerability in the handling of 802.11w Protected Management Frames PAF by Cisco Aironet 3800 Series Access Points could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might...

6.1CVSS6.2AI score0.00569EPSS
Exploits0References1
Cisco
Cisco
added 2017/11/01 4:0 p.m.41 views

Cisco Aironet 3800 Series Access Points Protected Management Frames User Denial of Service Vulnerability

A vulnerability in the handling of 802.11w Protected Management Frames PAF by Cisco Aironet 3800 Series Access Points could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerability exists because the affected device does not properl...

4.7CVSS6.2AI score0.00569EPSS
Exploits0References1
Kitploit
Kitploit
added 2017/10/06 9:30 p.m.40 views

Nzyme - Collects 802.11 Management Frames And Sends Them To A Graylog Setup For Wifi Ids, Monitoring, And Incident Response

Nzyme collects 802.11 management frames directly from the air and sends them to a Graylog Open Source log management setup for WiFi IDS, monitoring, and incident response. It only needs a JVM and a WiFi adapter that supports monitor mode. Think about this like a long-term months or years...

6AI score
Exploits0References4
n0where
n0where
added 2017/10/04 4:4 a.m.62 views

Wireless Monitoring, Intrusion Detection & Forensics: Nzyme

Nzyme collects 802.11 management frames directly from the air and sends them to a Graylog Open Source log management setup for WiFi IDS, monitoring, and incident response. It only needs a JVM and a WiFi adapter that supports monitor mode. Think about this like a long-term months or years...

6.6AI score
Exploits0References1
OpenVAS
OpenVAS
added 2016/07/29 12:0 a.m.29 views

Cisco Wireless LAN Controller Denial of Service Vulnerability

A vulnerability in wireless frame management service of the Cisco Wireless LAN Controller WLC could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on the affected device. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted fro...

6.5CVSS6.5AI score0.00739EPSS
Exploits0References1
OSV
OSV
added 2016/07/28 1:59 a.m.4 views

CVE-2016-1460

Cisco Wireless LAN Controller WLC devices 7.4121.0 and 8.00.30220.385 allow remote attackers to cause a denial of service via crafted wireless management frames, aka Bug ID CSCun92979...

6.5CVSS5.8AI score0.00739EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/07/28 1:0 a.m.28 views

CVE-2016-1460

Cisco Wireless LAN Controller WLC devices 7.4121.0 and 8.00.30220.385 allow remote attackers to cause a denial of service via crafted wireless management frames, aka Bug ID CSCun92979...

6.5AI score0.00739EPSS
Exploits0References3
CNVD
CNVD
added 2016/07/28 12:0 a.m.4 views

Cisco Wireless LAN Controller Device Denial of Service Vulnerability

Cisco Wireless LAN Controller WLC is a wireless LAN controller product from Cisco USA. The product provides security policy, intrusion detection and other functions in the wireless LAN. A security vulnerability exists in the Cisco WLC device versions 7.4 121.0 and 8.0 0.30220.385. A remote attack...

6.5CVSS6.8AI score0.00739EPSS
Exploits0References1
Cisco
Cisco
added 2016/07/27 4:0 p.m.46 views

Cisco Wireless LAN Controller Denial of Service Vulnerability

A vulnerability in wireless frame management service of the Cisco Wireless LAN Controller WLC could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on the affected device. The vulnerability is due to insufficient handling of wireless management frames. An...

6.1CVSS6.4AI score0.00739EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/11 12:0 a.m.2 views

Cisco Wireless LAN Controller 802.11i Management Frame Handling Denial of Service Vulnerability

Cisco Wireless LAN Controller is a wireless LAN controller product. Cisco Wireless LAN Controller fails to properly discard malformed values in 802.11i management frames from wireless clients, allowing remote attackers to exploit the vulnerability by submitting a special request to crash the devi...

6.1CVSS7AI score0.00772EPSS
Exploits0References1
OSV
OSV
added 2015/04/28 2:59 p.m.3 views

DEBIAN-CVE-2015-1863

Heap-based buffer overflow in wpasupplicant 1.0 through 2.4 allows remote attackers to cause a denial of service crash, read memory, or possibly execute arbitrary code via crafted SSID information in a management frame when creating or updating P2P entries...

5.8CVSS7.1AI score0.05228EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/04/27 12:0 a.m.44 views

FreeBSD : wpa_supplicant -- P2P SSID processing vulnerability (cb9d2fcd-eb47-11e4-b03e-002590263bf5)

Jouni Malinen reports : A vulnerability was found in how wpasupplicant uses SSID information parsed from management frames that create or update P2P peer entries e.g., Probe Response frame or number of P2P Public Action frames. SSID field has valid length range of 0-32 octets. However, it is...

5.8CVSS7AI score0.05228EPSS
Exploits0References3
ArchLinux
ArchLinux
added 2015/04/24 12:0 a.m.50 views

wpa_supplicant: arbitrary code execution

A vulnerability was found in how wpasupplicant uses SSID information parsed from management frames that create or update P2P peer entries e.g., Probe Response frame or number of P2P Public Action frames. SSID field has valid length range of 0-32 octets. However, it is transmitted in an element th...

5.8CVSS2.2AI score0.05228EPSS
Exploits0References3
Rows per page
Query Builder