26 matches found
CVE-2023-33080
Transient DOS while parsing a vender specific IE Information Element of reassociation response management frame...
PT-2024-12415 · Qualcomm · Qualcomm 7C+ Gen 3 Compute
Name of the Vulnerable Software and Affected Versions: Qualcomm 7c+ Gen 3 Compute affected versions not specified Description: The issue occurs when the WLAN firmware receives a 'reassoc response' frame that includes a RIC DATA element, leading to a transient denial of service DOS. Recommendation...
CVE-2023-33080
Transient DOS while parsing a vender specific IE Information Element of reassociation response management frame...
Information disclosure
Transient DOS while parsing a vender specific IE Information Element of reassociation response management frame...
CVE-2023-33080 Buffer over-read in WLAN Firmware
Transient DOS while parsing a vender specific IE Information Element of reassociation response management frame...
CVE-2023-33080
CVE-2023-33080 is a Qualcomm WLAN firmware issue described as a transient Denial-of-Service that occurs when parsing a vendor-specific Information Element in a reassociation response management frame. The CVE is classified with a CVSSv3.1 base score of 7.5 (Network, Low crew, No user interaction;...
CVE-2023-33080 Buffer over-read in WLAN Firmware
Transient DOS while parsing a vender specific IE Information Element of reassociation response management frame...
PT-2023-24174 · Qualcomm · 315 5G Iot Modem Firmware +317
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to a Transient Denial of Service DOS that occurs while parsing a vendor-specific Information Element IE of a reassociation response...
PT-2023-13803 · Unknown · Wlan Firmware
Name of the Vulnerable Software and Affected Versions: WLAN Firmware affected versions not specified Description: The issue is related to memory corruption caused by a buffer copy without size checking of the input in the WLAN Firmware. This occurs while processing the CCKM IE in a reassoc respon...
CVE-2021-34174
A vulnerability exists in Broadcom BCM4352 and BCM43684 chips. Any wireless router using BCM4352 and BCM43684 will be affected, such as ASUS AX6100. An attacker may cause a Denial of Service DoS to any device connected to BCM4352 or BCM43684 routers via an association or reassociation frame...
Cisco IOS Access Points Software Denial of Service Vulnerability
Cisco IOS Access Points APs Software is a suite of software for management control of access point devices from Cisco USA. A security vulnerability exists in the 802.11r Fast Transition feature set in Cisco IOS APs Software. An attacker in close physical proximity could exploit this vulnerability...
CVE-2018-0441
A vulnerability in the 802.11r Fast Transition feature set of Cisco IOS Access Points APs Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to a corruption of certain timer mechanisms triggered by...
wpa_supplicant: Accepting a retransmitted FT Reassociation Request and reinstalling the pairwise key while processing it
A new exploitation technique called key reinstallation attacks KRACK affecting WPA2 has been discovered. A remote attacker within Wi-Fi range could exploit this attack to decrypt Wi-Fi traffic or possibly inject forged Wi-Fi packets by reinstalling a previously used pairwise key PTK-TK by...
WPA2 Wireless Network PTK-TK Encryption Key Reinstallation Vulnerability
WPA Wi-Fi Protected Access is a system for securing wireless computer networks Wi-Fi. A PTK-TK encryption key reloading vulnerability exists in WPA2 wireless networks when receiving and processing retransmitted fast BSS transition re-association requests. The vulnerability is due to the fact that...
[ASA-201710-22] wpa_supplicant: man-in-the-middle
Arch Linux Security Advisory ASA-201710-22 ========================================== Severity: High Date : 2017-10-16 CVE-ID : CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13087 CVE-2017-13088 Package : wpasupplicant Type : man-in-the-middle...
Broadcom: Multiple overflows when handling 802.11r (FT) Reassociation Response(CVE-2017-11121)
Broadcom produces Wi-Fi HardMAC SoCs which are used to handle the PHY and MAC layer processing. These chips are present in both mobile devices and Wi-Fi routers, and are capable of handling many Wi-Fi related events without delegating to the host OS. In order to allow fast roaming between access...
Broadcom 802.11r (FT) Reassociation Response Overflows Vulnerability
Broadcom suffers from multiple overflow vulnerabilities when handling 802.11r FT Reassociation Response. Broadcom: Multiple overflows when handling 802.11r FT Reassociation Response CVE-2017-11121 Broadcom produces Wi-Fi HardMAC SoCs which are used to handle the PHY and MAC layer processing. Thes...
Unspecified Vulnerability in Philips' IntelliView MX40 Patient Worn Monitor
The MX40 Patient Worn Monitor is primarily used as a traditional telemetry medical device as part of a surveillance and alarm system. Under certain 802.11 network conditions, it is possible to partially re-associate the MX40 WLAN Monitor to a central monitoring station. In this state, the central...
Broadcom: Stack buffer overflow when parsing CCKM reassociation response(CVE-2017-6957)
Broadcom produces Wi-Fi HardMAC SoCs which are used to handle the PHY and MAC layer processing. These chips are present in both mobile devices and Wi-Fi routers, and are capable of handling many Wi-Fi related events without delegating to the host OS. In order to allow fast roaming between access...
CVE-2017-6957
Stack-based buffer overflow in the firmware in Broadcom Wi-Fi HardMAC SoC chips, when the firmware supports CCKM Fast and Secure Roaming and the feature is enabled in RAM, allows remote attackers to execute arbitrary code via a crafted reassociation response frame with a Cisco IE 156...