2 matches found
MGASA-2025-0113 Updated wpa_supplicant & hostapd packages fix security vulnerability
hostapd fails to process crafted RADIUS packets properly. When hostapd authenticates wi-fi devices with RADIUS authentication, an attacker in the position between the hostapd and the RADIUS server may inject crafted RADIUS packets and force RADIUS authentications to fail. CVE-2025-24912...
CVE-2025-24912
Summary: CVE-2025-24912 affects hostapd (RADIUS handling) and has been addressed in multiple vendor advisories. The issue causes hostapd to mishandle crafted RADIUS packets during authentication, enabling an attacker positioned between hostapd and the RADIUS server to inject crafted RADIUS packet...