Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Mageia
Mageiaadded 2024/03/06 4:53 p.m.51 views

Updated wpa_supplicant packages fix security vulnerabilities

The updated packages fix a security vulnerability: The implementation of PEAP in wpasupplicant through 2.10 allows authentication bypass. For a successful attack, wpasupplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eappeapdecrypt...

6.5CVSS7.4AI score0.0417EPSS
Exploits0References4
OSV
OSVadded 2024/02/22 5:15 p.m.4 views

AZL-35457 CVE-2023-52160 affecting package wpa_supplicant for versions less than 2.10-2

The implementation of PEAP in wpasupplicant through 2.10 allows authentication bypass. For a successful attack, wpasupplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eappeapdecrypt vulnerability can then be abused to skip Phase 2...

6.5CVSS6.8AI score0.0417EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2024/02/17 3:22 a.m.2 views

SUSE CVE-2023-52160

The implementation of PEAP in wpasupplicant through 2.10 allows authentication bypass. For a successful attack, wpasupplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eappeapdecrypt vulnerability can then be abused to skip Phase 2...

6.5CVSS9.3AI score0.0417EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2023/07/08 12:0 a.m.5 views

PT-2023-8665 · Google +6 · Android +7

Name of the Vulnerable Software and Affected Versions: wpa supplicant versions through 2.10 Description: The issue is related to the implementation of PEAP in wpa supplicant, which allows authentication bypass. For a successful attack, wpa supplicant must be configured to not verify the network's...

8.3CVSS9.6AI score0.0417EPSS
Exploits0References106
Cvelist
Cvelistadded 2009/12/09 6:0 p.m.22 views

CVE-2009-2505

The Internet Authentication Service IAS in Microsoft Windows Vista SP2 and Server 2008 SP2 does not properly validate MS-CHAP v2 Protected Extensible Authentication Protocol PEAP authentication requests, which allows remote attackers to execute arbitrary code via crafted structures in a malformed...

7.7AI score0.47852EPSS
Exploits1References4
securityvulns
securityvulnsadded 2009/12/09 12:0 a.m.75 views

Microsoft Security Bulletin MS09-071 - Critical Vulnerabilities in Internet Authentication Service Could Allow Remote Code Execution (974318)

Microsoft Security Bulletin MS09-071 - Critical Vulnerabilities in Internet Authentication Service Could Allow Remote Code Execution 974318 Published: December 08, 2009 Version: 1.0 General Information Executive Summary This security update resolves two privately reported vulnerabilities in...

10CVSS2AI score0.66697EPSS
Exploits2
ThreatPost
ThreatPostadded 2009/12/08 8:55 p.m.21 views

Microsoft Patches Critical IE, Windows Vulnerabilities

Microsoft today shipped six bulletins with patches for a total of 12 documented security vulnerabilities in a wide range of widely deployed software products. Three of the six bulletins are rated “critical,” Microsoft’s highest severity rating. The most serious issues affect the company’s Interne...

9.3CVSS1.3AI score0.86795EPSS
Exploits4References8
Rows per page
Query Builder