Lucene search
+L

43 matches found

Cvelist
Cvelist
added 2024/08/05 2:21 p.m.26 views

CVE-2024-21459 Buffer Over-read in WLAN HOST

Information disclosure while handling beacon or probe response frame in STA...

6.5CVSS0.00263EPSS
Exploits0References1
CVE
CVE
added 2023/11/07 5:26 a.m.75 views

CVE-2023-33061

CVE-2023-33061 describes a transient Denial of Service in the WLAN firmware when parsing WLAN beacon or probe-response frames. The vulnerability is associated with Qualcomm chipsets’ WLAN firmware (closed‑source components). The CVE is listed with a base score of 7.5 (High) on the CVSSv3.1 scale,...

7.5CVSS7.6AI score0.00433EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/06/06 8:15 a.m.33 views

CVE-2023-21661

Transient DOS while parsing WLAN beacon or probe-response frame...

7.5CVSS7.6AI score0.00383EPSS
Exploits0References1
NVD
NVD
added 2023/02/12 4:15 a.m.31 views

CVE-2022-40514

Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame...

9.8CVSS9.8AI score0.00475EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/02/12 12:0 a.m.4 views

Qualcomm 芯片缓冲区错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and is often manufactured on the surface of semiconductor wafers. A security vulnerability exists in the WLAN module of the Qualcomm chip that...

9.8CVSS8.7AI score0.00475EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/02/09 6:58 a.m.35 views

CVE-2022-40514 Buffer copy without checking size of input in WLAN Firmware

Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame...

9.8CVSS9.9AI score0.00475EPSS
Exploits0References1
CVE
CVE
added 2023/02/09 6:58 a.m.100 views

CVE-2022-40514

CVE-2022-40514 concerns memory corruption in WLAN firmware when processing the CCKM IE in a reassoc response frame, caused by a buffer copy that does not validate input size. The vulnerability is associated with Qualcomm’s WLAN firmware; CVSS v3.1 base score is PRACTICALLY high: 9.8 (Network atta...

9.8CVSS9.8AI score0.00475EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/11/11 4:15 a.m.19 views

Buffer overflow

A buffer overflow was discovered on Realtek RTL8195AM devices before 2.0.10. It exists in the client code when processing a malformed IE length of HT capability information in the Beacon and Association response frame...

7.5CVSS9.6AI score0.01068EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/10/30 12:0 a.m.59 views

openSUSE Security Update : hostapd (openSUSE-2017-1201) (KRACK)

This update for hostapd fixes the following issues : - Fix KRACK attacks on the AP side boo1063479, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13087, CVE-2017-13088 : Hostap was updated to upstream release 2.6 - fixed EAP-pwd last fragment validation...

7.5CVSS6.9AI score0.05228EPSS
Exploits0References24
Prion
Prion
added 2017/10/17 1:29 p.m.28 views

Authentication flaw

Wi-Fi Protected Access WPA and WPA2 that support 802.11v allows reinstallation of the Group Temporal Key GTK when processing a Wireless Network Management WNM Sleep Mode Response frame, allowing an attacker within radio range to replay frames from access points to clients...

2.9CVSS6.3AI score0.01742EPSS
Exploits0References25Affected Software12
NVD
NVD
added 2017/09/26 1:29 a.m.37 views

CVE-2014-0997

WiFiMonitor in Android 4.4.4 as used in the Nexus 5 and 4, Android 4.2.2 as used in the LG D806, Android 4.2.2 as used in the Samsung SM-T310, Android 4.1.2 as used in the Motorola RAZR HD, and potentially other unspecified Android releases before 5.0.1 and 5.0.2 does not properly handle...

7.5CVSS7.2AI score0.064EPSS
Exploits5References6
Cvelist
Cvelist
added 2017/03/27 2:0 p.m.26 views

CVE-2017-6957

Stack-based buffer overflow in the firmware in Broadcom Wi-Fi HardMAC SoC chips, when the firmware supports CCKM Fast and Secure Roaming and the feature is enabled in RAM, allows remote attackers to execute arbitrary code via a crafted reassociation response frame with a Cisco IE 156...

8.4AI score0.04588EPSS
Exploits3References3
CVE
CVE
added 2017/03/27 2:0 p.m.53 views

CVE-2017-6957

CVE-2017-6957 is a stack-based buffer overflow in Broadcom Wi‑Fi HardMAC SoC firmware (notably BCM4339) when handling Cisco CCKM Fast and Secure Roaming. In affected firmware, the reassociation response frame containing Cisco IE 156 is parsed and a length field derived from IE[20]:IE[21] can over...

8.1CVSS8.4AI score0.04588EPSS
Exploits3References3Affected Software1
Packet Storm
Packet Storm
added 2015/01/26 12:0 a.m.80 views

Android WiFi-Direct Denial Of Service

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Android WiFi-Direct Denial of Service 1. Advisory Information Title: Android WiFi-Direct Denial of Service Advisory ID: CORE-2015-0002 Advisory URL: http://www.coresecurity.com/advisories/android-wifi-direct-denial-service Date...

2.7CVSS7.6AI score0.064EPSS
Exploits5
exploitpack
exploitpack
added 2008/04/17 12:0 a.m.20 views

Intel Centrino ipw2200BG - Wireless Driver Remote Buffer Overflow (Metasploit)

Intel Centrino ipw2200BG - Wireless Driver Remote Buffer Overflow Metasploit This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

0.9AI score
Exploits0
exploitpack
exploitpack
added 2006/11/22 12:0 a.m.22 views

NETGEAR WG311v1 Wireless Driver 2.3.1.10 - SSID Heap Buffer Overflow

NETGEAR WG311v1 Wireless Driver 2.3.1.10 - SSID Heap Buffer Overflow source: https://www.securityfocus.com/bid/21251/info NetGear WG311v1 Wireless devices are prone to a heap-based buffer-overflow vulnerability because the driver fails to properly bounds-check user-supplied data before copying it...

0.7AI score
Exploits0
NVD
NVD
added 2006/11/14 7:7 p.m.22 views

CVE-2006-5882

Stack-based buffer overflow in the Broadcom BCMWL5.SYS wireless device driver 3.50.21.10, as used in Cisco Linksys WPC300N Wireless-N Notebook Adapter before 4.100.15.5 and other products, allows remote attackers to execute arbitrary code via an 802.11 response frame containing a long SSID field...

8.3CVSS8.1AI score0.13013EPSS
Exploits3References9
Cvelist
Cvelist
added 2006/11/14 7:0 p.m.26 views

CVE-2006-5882

Stack-based buffer overflow in the Broadcom BCMWL5.SYS wireless device driver 3.50.21.10, as used in Cisco Linksys WPC300N Wireless-N Notebook Adapter before 4.100.15.5 and other products, allows remote attackers to execute arbitrary code via an 802.11 response frame containing a long SSID field...

8.1AI score0.13013EPSS
Exploits3References9
NVD
NVD
added 2006/11/04 1:7 a.m.33 views

CVE-2006-5710

The Airport driver for certain Orinoco based Airport cards in Darwin kernel 8.8.0 in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to execute arbitrary code via an 802.11 probe response frame without any valid information element IE fields after the header, which...

7.5CVSS7.3AI score0.18071EPSS
Exploits2References13
CVE
CVE
added 2006/11/04 1:0 a.m.57 views

CVE-2006-5710

CVE-2006-5710 affects Apple AirPort drivers in Darwin kernel 8.8.0 on Mac OS X 10.4.8 (and possibly related versions) via a heap-based overflow triggered by crafted 802.11 probe response frames lacking proper information elements after the header. The CERT/NVD description states a remote attacker...

7.5CVSS7.3AI score0.18071EPSS
Exploits2References13Affected Software2
Rows per page
Query Builder