225 matches found
CVE-2025-21429 Buffer Over-read in WLAN Host
Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request...
CVE-2025-21429 Buffer Over-read in WLAN Host
Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request...
CVE-2025-21428
CVE-2025-21428 relates to memory corruption in Qualcomm chipsets when a station (STA) connects to an access point (AP) and an ADD TS request is initiated to establish a TSpec session. The vulnerability affects the WLAN host/stack in affected Qualcomm products and is classified with CVSS v3.1 vect...
CVE-2025-21828
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't flush non-uploaded STAs If STA state is pre-moved to AUTHORIZED such as in IBSS scenarios and insertion fails, the station is freed. In this case, the driver never knew about the station, so trying to flush ...
CVE-2025-21828
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't flush non-uploaded STAs If STA state is pre-moved to AUTHORIZED such as in IBSS scenarios and insertion fails, the station is freed. In this case, the driver never knew about the station, so trying to flush ...
SUSE CVE-2022-49230
In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: fix possible memory leak in mt7915mcuaddsta Free allocated skb in mt7915mcuaddsta routine in case of failures...
SUSE CVE-2022-49328
In the Linux kernel, the following vulnerability has been resolved: mt76: fix use-after-free by removing a non-RCU wcid pointer Fixes an issue caught by KASAN about use-after-free in mt76txqschedule by protecting mtxq-wcid with rculock between mt76txqschedule and stainfoalloc, free. 18853.876689...
DEBIAN-CVE-2022-49230
In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: fix possible memory leak in mt7915mcuaddsta Free allocated skb in mt7915mcuaddsta routine in case of failures...
CVE-2022-49230 mt76: mt7915: fix possible memory leak in mt7915_mcu_add_sta
In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: fix possible memory leak in mt7915mcuaddsta Free allocated skb in mt7915mcuaddsta routine in case of failures...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Wifi: iwlwifi: mvm: Avoid NULL pointer dereferencing The functions iwlmvmtxskbsta and iwlmvmtxmpdu check that the mvmvsta pointer is not NULL. They retrieve this pointer using iwlmvmstafrommac80211, which dereferences the...
WAVLINK AC3000 注入漏洞
WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. The WAVLINK AC3000 suffers from a command injection vulnerability that stems from the qos.cgi qossta function failing to properly filter construct command special characters, commands, etc. The vulnerability can be exploited to execut...
PT-2025-2537 · Wavlink · Wavlink Ac3000
Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A buffer overflow issue exists in the qos.cgi qos sta settings functionality. This can be triggered by a specially crafted HTTP request, leading to a stack-based buffer overflow. An...
PT-2025-2447 · Wavlink · Wavlink Ac3000
Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 M33A8 version V5030.210505 Description: A command execution issue exists in the qos.cgi qos sta functionality. A specially crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP...
CVE-2024-45558 Buffer Over-read in WLAN Host Cmn
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length...
CVE-2024-20148
In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389045 / ALPS09136494; Issue ID:...
CVE-2024-20146
In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389496 / ALPS09137491; Issue I...
CVE-2024-20152
In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00389047 / ALPS09136505; Issue...
CVE-2024-20152
In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00389047 / ALPS09136505; Issue...
CVE-2024-20148
In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389045 / ALPS09136494; Issue ID:...
CVE-2024-20148
In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389045 / ALPS09136494; Issue ID:...