Lucene search
K

7 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Linux

A issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second or subsequent broadcast fragments even when sent in plaintext and process them as fully unfragmented frames. An adversary can exploit this vulnerability to inject arbitrary...

6.5CVSS7.1AI score0.03515EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/11/09 6:6 p.m.4 views

kernel: accepting fragmented plaintext frames in protected networks

A vulnerability was found in Linux kernel, where the WiFi implementations assemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or...

6.5CVSS7.1AI score0.04173EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/11/09 5:26 p.m.3 views

kernel: accepting fragmented plaintext frames in protected networks

A vulnerability was found in Linux kernel, where the WiFi implementations assemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or...

6.5CVSS7.1AI score0.04173EPSS
Exploits0References4
Hacker One
Hacker One
added 2021/06/19 9:24 p.m.364 views

Internet Bug Bounty: Fragmentation and Aggregation Flaws in Wi-Fi

I discovered three design flaws in the Wi-Fi standard and widespread related implementation flaws see GitHub overview and test tool. Here I'll specifically cover open source software. These findings have not received bug bounties from other sources. Implementation flaws allowing trivial packet...

3.3CVSS7.6AI score0.07604EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2021/05/19 12:26 a.m.75 views

CVE-2020-26145

A flaw was found in ath10khttrxprocrxfragindhl in drivers/net/wireless/ath/ath10k/httrx.c in the Linux kernel WiFi implementations, where it accepts a second or subsequent broadcast fragments even when sent in plaintext and then process them as full unfragmented frames. The highest threat from th...

6.5CVSS0.9AI score0.03515EPSS
Exploits0References4
OSV
OSV
added 2021/05/11 6:0 p.m.2 views

UBUNTU-CVE-2020-26147

An issue was discovered in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames...

5.4CVSS6.6AI score0.07604EPSS
Exploits0References12
OSV
OSV
added 2021/05/11 6:0 p.m.5 views

UBUNTU-CVE-2020-26145

An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second or subsequent broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets...

6.5CVSS6.8AI score0.03515EPSS
Exploits0References10
Rows per page
Query Builder