Lucene search
K

225 matches found

Cvelist
Cvelist
added 2025/04/07 10:15 a.m.14 views

CVE-2025-21429 Buffer Over-read in WLAN Host

Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request...

7.5CVSS0.00247EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/07 10:15 a.m.11 views

CVE-2025-21429 Buffer Over-read in WLAN Host

Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request...

7.5CVSS7.9AI score0.00247EPSS
Exploits0References1
CVE
CVE
added 2025/04/07 10:15 a.m.50 views

CVE-2025-21428

CVE-2025-21428 relates to memory corruption in Qualcomm chipsets when a station (STA) connects to an access point (AP) and an ADD TS request is initiated to establish a TSpec session. The vulnerability affects the WLAN host/stack in affected Qualcomm products and is classified with CVSS v3.1 vect...

7.5CVSS7.1AI score0.00243EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/03/06 4:15 p.m.8 views

CVE-2025-21828

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't flush non-uploaded STAs If STA state is pre-moved to AUTHORIZED such as in IBSS scenarios and insertion fails, the station is freed. In this case, the driver never knew about the station, so trying to flush ...

5.5CVSS0.00171EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/03/06 4:4 p.m.7 views

CVE-2025-21828

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't flush non-uploaded STAs If STA state is pre-moved to AUTHORIZED such as in IBSS scenarios and insertion fails, the station is freed. In this case, the driver never knew about the station, so trying to flush ...

5.5CVSS5.6AI score0.00171EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/02/27 3:10 a.m.2 views

SUSE CVE-2022-49230

In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: fix possible memory leak in mt7915mcuaddsta Free allocated skb in mt7915mcuaddsta routine in case of failures...

5.5CVSS6.9AI score0.00243EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/02/27 3:8 a.m.13 views

SUSE CVE-2022-49328

In the Linux kernel, the following vulnerability has been resolved: mt76: fix use-after-free by removing a non-RCU wcid pointer Fixes an issue caught by KASAN about use-after-free in mt76txqschedule by protecting mtxq-wcid with rculock between mt76txqschedule and stainfoalloc, free. 18853.876689...

5.5CVSS6.3AI score0.00284EPSS
Exploits0References7
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

DEBIAN-CVE-2022-49230

In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: fix possible memory leak in mt7915mcuaddsta Free allocated skb in mt7915mcuaddsta routine in case of failures...

5.5CVSS5.5AI score0.00243EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/26 1:55 a.m.2 views

CVE-2022-49230 mt76: mt7915: fix possible memory leak in mt7915_mcu_add_sta

In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: fix possible memory leak in mt7915mcuaddsta Free allocated skb in mt7915mcuaddsta routine in case of failures...

6.5AI score0.00243EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.1 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Wifi: iwlwifi: mvm: Avoid NULL pointer dereferencing The functions iwlmvmtxskbsta and iwlmvmtxmpdu check that the mvmvsta pointer is not NULL. They retrieve this pointer using iwlmvmstafrommac80211, which dereferences the...

5.5CVSS6.3AI score0.00237EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.3 views

WAVLINK AC3000 注入漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. The WAVLINK AC3000 suffers from a command injection vulnerability that stems from the qos.cgi qossta function failing to properly filter construct command special characters, commands, etc. The vulnerability can be exploited to execut...

9.1CVSS8AI score0.20769EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.8 views

PT-2025-2537 · Wavlink · Wavlink Ac3000

Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A buffer overflow issue exists in the qos.cgi qos sta settings functionality. This can be triggered by a specially crafted HTTP request, leading to a stack-based buffer overflow. An...

9.1CVSS7.3AI score0.01482EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.3 views

PT-2025-2447 · Wavlink · Wavlink Ac3000

Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 M33A8 version V5030.210505 Description: A command execution issue exists in the qos.cgi qos sta functionality. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP...

9.1CVSS9.4AI score0.20769EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/01/06 10:33 a.m.24 views

CVE-2024-45558 Buffer Over-read in WLAN Host Cmn

Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length...

7.5CVSS0.00358EPSS
Exploits0References1
NVD
NVD
added 2025/01/06 4:15 a.m.37 views

CVE-2024-20148

In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389045 / ALPS09136494; Issue ID:...

9.8CVSS0.00259EPSS
Exploits0References1
OSV
OSV
added 2025/01/06 4:15 a.m.12 views

CVE-2024-20146

In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389496 / ALPS09137491; Issue I...

8.1CVSS7.5AI score0.00136EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/06 3:17 a.m.27 views

CVE-2024-20152

In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00389047 / ALPS09136505; Issue...

0.0009EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/06 3:17 a.m.10 views

CVE-2024-20152

In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00389047 / ALPS09136505; Issue...

4.6AI score0.0009EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/06 3:17 a.m.39 views

CVE-2024-20148

In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389045 / ALPS09136494; Issue ID:...

0.00259EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/06 3:17 a.m.12 views

CVE-2024-20148

In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389045 / ALPS09136494; Issue ID:...

9.2AI score0.00259EPSS
Exploits0References1
Rows per page
Query Builder