Lucene search
+L

259 matches found

RedHat Linux
RedHat Linux
added 2021/03/11 7:43 a.m.80 views

Important: Red Hat Security Advisory: wpa_supplicant security update

An update for wpasupplicant is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS7.1AI score0.01179EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2021/03/11 7:9 a.m.36 views

Important: wpa_supplicant security update

The wpasupplicant packages contain an 802.1X Supplicant with support for WEP, WPA, WPA2 IEEE 802.11i / RSN, and various EAP authentication methods. They implement key negotiation with a WPA Authenticator for client stations and controls the roaming and IEEE 802.11 authentication and association o...

5.4CVSS2.4AI score0.01179EPSS
Exploits0References1
Fedora
Fedora
added 2021/03/08 8:15 p.m.43 views

[SECURITY] Fedora 32 Update: wpa_supplicant-2.9-6.fc32

wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...

7.5CVSS5.2AI score0.01179EPSS
Exploits0
Fedora
Fedora
added 2021/03/02 3:56 p.m.43 views

[SECURITY] Fedora 33 Update: wpa_supplicant-2.9-8.fc33

wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...

7.5CVSS5.2AI score0.01179EPSS
Exploits0
Fedora
Fedora
added 2021/02/07 1:34 a.m.86 views

[SECURITY] Fedora 33 Update: wpa_supplicant-2.9-7.fc33

wpasupplicant is a WPA Supplicant for Linux, BSD and Windows with support for WPA and WPA2 IEEE 802.11i / RSN. Supplicant is the IEEE 802.1X/WPA component that is used in the client stations. It implements key negotiation with a WPA Authenticator and it controls the roaming and IEEE 802.11...

7.9CVSS5.2AI score0.04707EPSS
Exploits1
OSV
OSV
added 2020/09/23 1:15 a.m.4 views

CVE-2019-16000

A vulnerability in the automatic update process of Cisco Umbrella Roaming Client for Windows could allow an authenticated, local attacker to install arbitrary, unapproved applications on a targeted device. The vulnerability is due to insufficient verification of the Windows Installer. An attacker...

4.4CVSS5.8AI score0.00183EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2020/09/23 12:26 a.m.8 views

CVE-2019-16000 Cisco Umbrella Roaming Client for Windows Install Vulnerability

A vulnerability in the automatic update process of Cisco Umbrella Roaming Client for Windows could allow an authenticated, local attacker to install arbitrary, unapproved applications on a targeted device. The vulnerability is due to insufficient verification of the Windows Installer. An attacker...

4.4CVSS6.6AI score0.00183EPSS
Exploits0References1
CVE
CVE
added 2020/09/23 12:26 a.m.66 views

CVE-2019-16000

CVE-2019-16000 affects the Cisco Umbrella Roaming Client for Windows. The issue is in the automatic update process where Windows Installer verification is insufficient, allowing an authenticated, local attacker to place a file in a specific location and bypass policy to install unapproved applica...

4.4CVSS4.6AI score0.00183EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/09/23 12:26 a.m.24 views

CVE-2019-16000 Cisco Umbrella Roaming Client for Windows Install Vulnerability

A vulnerability in the automatic update process of Cisco Umbrella Roaming Client for Windows could allow an authenticated, local attacker to install arbitrary, unapproved applications on a targeted device. The vulnerability is due to insufficient verification of the Windows Installer. An attacker...

4.4CVSS4.7AI score0.00183EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2020/07/02 1:18 p.m.33 views

FakeSpy Android Malware Spread Via ‘Postal-Service’ Apps

Android mobile device users are being targeted in a new SMS phishing campaign that’s spreading the FakeSpy infostealer. The malware, which is disguised as legitimate global postal-service apps, steals SMS messages, financial data and more from the victims’ devices. The campaign was first discover...

0.1AI score
Exploits0References8
Securelist
Securelist
added 2020/05/20 10:0 a.m.135 views

IT threat evolution Q1 2020

Targeted attacks and malware campaigns Operation AppleJeus: the sequel In 2018, we published a report on Operation AppleJeus, one of the more notable campaigns of the threat actor Lazarus, currently one of the most active and prolific APT groups. One notable feature of this campaign was that it...

6.9AI score
Exploits0
Citrix
Citrix
added 2020/04/23 12:0 a.m.10 views

Citrix WEM 1903 - Roaming folder files are deleted by VUEMUIAgent.exe on logon

Users noticed that the icons in the task bar went white. This was due to a lot of folders and files were deleted in the User Profiles Example Appdata\Roaming\Adobe\Acrobat\2017\ Appdata\Roaming\Google\Chrome\ Appdata\Roaming\Macromedia\Flash Player\ Appdata\Roaming\Microsoft\Credentials...

7AI score
Exploits0
0day.today
0day.today
added 2020/04/21 12:0 a.m.53 views

Neowise CarbonFTP 1.4 - Insecure Proprietary Password Encryption Exploit

Title: Neowise CarbonFTP 1.4 - Insecure Proprietary Password Encryption Author: hyp3rlinx Vendor: CVE: CVE-2020-6857 import time, string, sys, argparse, os, codecs Fixed: updated for Python 3, the hex decode function was not working in Python 3 version. This should be compatible for Python 2 and ...

5.5CVSS5.8AI score0.00967EPSS
Exploits8
Microsoft KB
Microsoft KB
added 2020/04/09 12:0 a.m.9 views

Delay occurs when you log on to a domain from a computer that is running Windows 7 or Windows Server 2008 R2

Delay occurs when you log on to a domain from a computer that is running Windows 7 or Windows Server 2008 R2 Symptoms Consider the following scenario: You have a roaming user profile or remote home directory on a client computer that is running Windows 7 or Windows Server 2008 R2 in an Active...

6.3AI score
Exploits0
Microsoft KB
Microsoft KB
added 2020/03/17 12:0 a.m.4 views

March 17, 2020—KB4541333 (OS Build 17134.1399)

None None...

6.1AI score
Exploits0
NVD
NVD
added 2020/03/05 9:15 a.m.23 views

CVE-2019-10546

Buffer overflow can occur in WLAN firmware while parsing beacon/proberesponse frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wire...

10CVSS9.7AI score0.00902EPSS
Exploits0References1
Prion
Prion
added 2020/03/05 9:15 a.m.26 views

Buffer overflow

Buffer overflow can occur in WLAN firmware while parsing beacon/proberesponse frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wire...

10CVSS9.5AI score0.00902EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/03/05 8:56 a.m.34 views

CVE-2019-10546

Buffer overflow can occur in WLAN firmware while parsing beacon/proberesponse frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wire...

9.7AI score0.00902EPSS
Exploits0References1
Securelist
Securelist
added 2020/02/27 2:0 p.m.29 views

Roaming Mantis, part V

Kaspersky has continued to track the Roaming Mantis campaign. The group's attack methods have improved and new targets continuously added in order to steal more funds. The attackers' focus has also shifted to techniques that avoid tracking and research: whitelist for distribution, analysis...

0.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.10 views

The vulnerability of the automatic update function of the security service for Umbrella Roaming Client for Windows allows a hacker to install arbitrary applications on the target device.

The vulnerability of the automatic update function for the Umbrella Roaming Client security service for Windows devices relates to insufficient data authentication checks. Exploiting this vulnerability could allow attackers to install arbitrary applications on target devices...

4.6CVSS5.6AI score0.00183EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder