Lucene search
K

64 matches found

Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.79 views

SUSE SLED15 / SLES15 Security Update : wpa_supplicant (SUSE-SU-2020:3380-1) (KRACK)

This update for wpasupplicant fixes the following issues : Security issue fixed : CVE-2019-16275: Fixed an AP mode PMF disconnection protection bypass bsc1150934. Non-security issues fixed : Enable SAE support jscSLE-14992. Limit P2PDEVICE name to appropriate ifname size. Fix wicked wlan bsc11569...

8.1CVSS7.1AI score0.05372EPSS
Exploits1References67
Tenable Nessus
Tenable Nessus
added 2020/11/30 12:0 a.m.248 views

openSUSE Security Update : wpa_supplicant (openSUSE-2020-2059) (KRACK)

This update for wpasupplicant fixes the following issues : Security issue fixed : - CVE-2019-16275: Fixed an AP mode PMF disconnection protection bypass bsc1150934. Non-security issues fixed : - Enable SAE support jscSLE-14992. - Limit P2PDEVICE name to appropriate ifname size. - Fix wicked wlan...

8.1CVSS7.1AI score0.05372EPSS
Exploits1References44
Tenable Nessus
Tenable Nessus
added 2020/11/30 12:0 a.m.66 views

openSUSE Security Update : wpa_supplicant (openSUSE-2020-2053) (KRACK)

This update for wpasupplicant fixes the following issues : Security issue fixed : - CVE-2019-16275: Fixed an AP mode PMF disconnection protection bypass bsc1150934. Non-security issues fixed : - Enable SAE support jscSLE-14992. - Limit P2PDEVICE name to appropriate ifname size. - Fix wicked wlan...

8.1CVSS7.1AI score0.05372EPSS
Exploits1References44
OPENSUSE Linux
OPENSUSE Linux
added 2020/11/27 12:0 a.m.52 views

Security update for wpa_supplicant (moderate)

openSUSE Security Update: Security update for wpasupplicant Announcement ID: openSUSE-SU-2020:2059-1 Rating: moderate References: 1131644 1131868 1131870 1131871 1131872 1131874 1133640 1144443 1150934 1156920 1166933 1167331 930077 930078 930079 Cross-References: CVE-2015-4141 CVE-2015-4142...

8.1CVSS6.8AI score0.05372EPSS
Exploits1References15
OPENSUSE Linux
OPENSUSE Linux
added 2020/11/26 12:0 a.m.47 views

Security update for wpa_supplicant (moderate)

openSUSE Security Update: Security update for wpasupplicant Announcement ID: openSUSE-SU-2020:2053-1 Rating: moderate References: 1131644 1131868 1131870 1131871 1131872 1131874 1133640 1144443 1150934 1156920 1166933 1167331 930077 930078 930079 Cross-References: CVE-2015-4141 CVE-2015-4142...

8.1CVSS6.8AI score0.05372EPSS
Exploits1References15
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for wpa_supplicant (EulerOS-SA-2020-2144)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.8AI score0.01214EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/09/28 12:0 a.m.28 views

EulerOS 2.0 SP3 : wpa_supplicant (EulerOS-SA-2020-2144)

According to the version of the wpasupplicant package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - hostapd before 2.10 and wpasupplicant before 2.10 allow an incorrect indication of disconnection in certain situations because source address...

6.5CVSS6.5AI score0.01214EPSS
Exploits0References2
Prion
Prion
added 2020/09/08 10:15 a.m.20 views

Buffer overflow

u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag...

10CVSS9.5AI score0.01052EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/09/08 9:31 a.m.33 views

CVE-2020-3668

u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdrag...

9.6AI score0.01052EPSS
Exploits0References1
CVE
CVE
added 2020/09/08 9:31 a.m.54 views

CVE-2020-3668

Technical details about CVE-2020-3668 are not publicly available in the provided connected documents. The sources reiterate a buffer overflow during PMF/MCBC frame parsing in Snapdragon devices but do not specify affected components, root cause, impacts, or available fixes.

10CVSS9.4AI score0.01052EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/06/18 12:0 a.m.27 views

Cisco IOS XE Software Denial of Service (cisco-sa-ewlc-dos-AnvKvMxR)

According to its self-reported version, Cisco IOS XE Software is affected by a Denial of Service vulnerability. The vulnerability exists because the affected software does not properly validate 802.11w disassociation and deauthentication PMFs that it receives. An unauthenticated, could exploit th...

4.7CVSS5.2AI score0.00468EPSS
Exploits0References3
Mageia
Mageia
added 2020/06/10 10:26 p.m.45 views

Updated wpa_supplicant packages fix security vulnerability

Updated wpasupplicant and hostpad packages fix security vulnerability: A vulnerability was discovered in wpasupplicant. When Access Point AP mode and Protected Management Frames PMF IEEE 802.11w are enabled, wpasupplicant does not perform enough validation on the source address of some received...

6.5CVSS0.8AI score0.01214EPSS
Exploits0References5
NVD
NVD
added 2020/06/03 6:15 p.m.20 views

CVE-2020-3206

A vulnerability in the handling of IEEE 802.11w Protected Management Frames PMFs of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerabilit...

4.7CVSS4.7AI score0.00468EPSS
Exploits0References1
Prion
Prion
added 2020/06/03 6:15 p.m.22 views

Design/Logic Flaw

A vulnerability in the handling of IEEE 802.11w Protected Management Frames PMFs of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerabilit...

3.3CVSS4.7AI score0.00468EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/06/03 5:40 p.m.72 views

CVE-2020-3206

CVE-2020-3206 affects Cisco Catalyst 9800 Series Wireless Controllers running IOS XE. The issue is a failure to properly validate IEEE 802.11w Protected Management Frames (PMFs), allowing an unauthenticated, adjacent attacker to terminate a single valid user connection on an affected device. Mult...

4.7CVSS4.6AI score0.00468EPSS
Exploits0References1Affected Software1
Cisco
Cisco
added 2020/06/03 4:0 p.m.38 views

Cisco IOS XE Software Catalyst 9800 Series Wireless Controllers Denial of Service Vulnerability

A vulnerability in the handling of IEEE 802.11w Protected Management Frames PMFs of Cisco Catalyst 9800 Series Wireless Controllers that are running Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to terminate a valid user connection to an affected device. The vulnerabilit...

4.7CVSS2.4AI score0.00468EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/11/12 12:0 a.m.43 views

Fedora 30 : hostapd (2019-2265b5ae86)

Security fix CVE-2019-16275 AP mode PMF disconnection protection bypass Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introduci...

6.5CVSS6.3AI score0.01214EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/09/13 12:0 a.m.31 views

CVE-2019-16275

hostapd before 2.10 and wpasupplicant before 2.10 allow an incorrect indication of disconnection in certain situations because source address validation is mishandled. This is a denial of service that should have been prevented by PMF aka management frame protection. The attacker must send a...

6.5CVSS6.8AI score0.01214EPSS
Exploits0References5
NVD
NVD
added 2019/09/12 8:15 p.m.19 views

CVE-2019-16275

hostapd before 2.10 and wpasupplicant before 2.10 allow an incorrect indication of disconnection in certain situations because source address validation is mishandled. This is a denial of service that should have been prevented by PMF aka management frame protection. The attacker must send a...

6.5CVSS6.5AI score0.01214EPSS
Exploits0References14
CVE
CVE
added 2019/09/12 7:7 p.m.486 views

CVE-2019-16275

CVE-2019-16275 affects hostapd and wpa_supplicant prior to 2.10. The root cause is misvalidation of the source address on certain received 802.11 management frames when PMF (IEEE 802.11w) is enabled, enabling a denial-of-service by an attacker within radio range. Impact is Denial of Service (disc...

6.5CVSS6.3AI score0.01214EPSS
Exploits0References14Affected Software2
Rows per page
Query Builder