Lucene search
+L

226 matches found

Cvelist
Cvelist
added 2025/01/06 3:17 a.m.42 views

CVE-2024-20148

In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389045 / ALPS09136494; Issue ID:...

0.00259EPSS
Exploits0References1
CVE
CVE
added 2025/01/06 3:17 a.m.137 views

CVE-2024-20148

CVE-2024-20148 concerns MediaTek wlan STA FW where an improper input validation leads to an out-of-bounds write. The vulnerability could enable remote code execution on proximal devices with no privileges and no user interaction required. Patch IDs associated are WCNCR00389045 and ALPS09136494 (M...

9.8CVSS7.8AI score0.00259EPSS
Exploits0References1Affected Software3
Vulnrichment
Vulnrichment
added 2025/01/06 3:17 a.m.9 views

CVE-2024-20146

In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389496 / ALPS09137491; Issue I...

8.2AI score0.00136EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/06 3:17 a.m.31 views

CVE-2024-20146

In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389496 / ALPS09137491; Issue I...

0.00136EPSS
Exploits0References1
CVE
CVE
added 2025/01/06 3:17 a.m.124 views

CVE-2024-20146

The CVE-2024-20146 issue affects MediaTek wlan STA driver and is caused by improper input validation leading to an out-of-bounds write. This can allow remote code execution with no additional privileges and without user interaction, affecting adjacent systems and potentially enabling high-severit...

8.1CVSS7.8AI score0.00136EPSS
Exploits0References1Affected Software4
Positive Technologies
Positive Technologies
added 2025/01/06 12:0 a.m.5 views

PT-2025-2282 · Wlan Sta · Wlan Sta

Name of the Vulnerable Software and Affected Versions: WLAN STA affected versions not specified Description: In WLAN STA, there is a possible way to trick a client to connect to an AP with spoofed SSID. This could lead to remote information disclosure with no additional execution privileges neede...

7.5CVSS6.9AI score0.00323EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/01/06 12:0 a.m.4 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from a denial of service that may occur when the driver parses each STA profile IE and attempts to access the EXTN element ID without checking the IE length...

7.5CVSS6.4AI score0.00358EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/06 12:0 a.m.5 views

PT-2025-2281 · Unknown · Wlan Sta Driver

Name of the Vulnerable Software and Affected Versions: WLAN STA driver affected versions not specified Description: The issue is related to a reachable assertion in the WLAN STA driver due to improper exception handling. This could lead to a local denial of service if a malicious actor has alread...

4.4CVSS5.9AI score0.0009EPSS
Exploits0References8
OSV
OSV
added 2024/11/26 11:22 a.m.8 views

CVE-2024-50367

A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...

7.2CVSS5.8AI score0.01042EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/26 12:0 a.m.6 views

PT-2024-9483

Name of the Vulnerable Software and Affected Versions: Advantech EKI-6333AC-2G versions 1.6.3 and earlier Advantech EKI-6333AC-2GD versions 1.6.3 and earlier Advantech EKI-6333AC-1GPO versions 1.2.1 and earlier Description: A security issue was discovered in the "sta log htm" API of Advantech's...

9CVSS6AI score0.01042EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2024/11/19 12:0 a.m.6 views

The vulnerability of the mac80211 component in the Linux operating system allows a hacker to gain access to confidential information.

The vulnerability of the mac80211 component in the Linux operating system’s kernel is related to the disclosure of information through the stainfofree function. Exploiting this vulnerability can allow an attacker to gain access to confidential information...

3.3CVSS6.5AI score0.00219EPSS
Exploits0References25Affected Software5
NVD
NVD
added 2024/11/04 10:15 a.m.26 views

CVE-2024-38403

Transient DOS while parsing BTM ML IE when per STA profile is not included...

7.5CVSS0.00244EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/04 10:4 a.m.24 views

CVE-2024-38403 Buffer Over-read in WLAN Firmware

Transient DOS while parsing BTM ML IE when per STA profile is not included...

7.5CVSS0.00244EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/04 10:4 a.m.12 views

CVE-2024-38403 Buffer Over-read in WLAN Firmware

Transient DOS while parsing BTM ML IE when per STA profile is not included...

7.5CVSS7.2AI score0.00244EPSS
Exploits0References1
CVE
CVE
added 2024/11/04 10:4 a.m.54 views

CVE-2024-38403

CVE-2024-38403 affects Qualcomm closed‑source WLAN firmware components. It describes a transient denial‑of‑service that occurs when parsing the BTM ML IE if the per‑STA profile is not included. The entry assigns a high impact and network‑level exposure with low attack complexity and no user inter...

7.5CVSS7AI score0.00244EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/10/21 6:15 p.m.8 views

UBUNTU-CVE-2024-49929

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: avoid NULL pointer dereference iwlmvmtxskbsta and iwlmvmtxmpdu verify that the mvmvsta pointer is not NULL. It retrieves this pointer using iwlmvmstafrommac80211, which is dereferencing the ieee80211sta pointe...

5.5CVSS6.2AI score0.00237EPSS
Exploits0References22
Positive Technologies
Positive Technologies
added 2024/10/21 12:0 a.m.13 views

PT-2024-33770

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: A NULL pointer dereference issue has been resolved in the Linux kernel. The issue occurs in the iwl mvm tx skb sta and iwl mvm tx mpdu functions, which verify that the mvmvsta pointer is not...

5.5CVSS5.4AI score0.00237EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/09/24 2:39 a.m.5 views

kernel: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()

A vulnerability was found in the Linux kernel's mac80211 component within the ieee80211stapsdeliverwakeup function, where improper locking of the sta-pslock can lead to a deadlock condition, which occurs because the function uses a spin lock without preventing softirq execution on the same CPU,...

5.5CVSS6.7AI score0.00223EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/28 12:34 p.m.3 views

kernel: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()

A vulnerability was found in the Linux kernel's mac80211 component within the ieee80211stapsdeliverwakeup function, where improper locking of the sta-pslock can lead to a deadlock condition, which occurs because the function uses a spin lock without preventing softirq execution on the same CPU,...

5.5CVSS6.7AI score0.00223EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/08/26 10:11 a.m.79 views

CVE-2024-43911 wifi: mac80211: fix NULL dereference at band check in starting tx ba session

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL dereference at band check in starting tx ba session In MLD connection, linkdata/linkconf are dynamically allocated. They don't point to vif-bssconf. So, there will be no chanreq assigned to vif-bssconf an...

0.00225EPSS
Exploits0References2
Rows per page
Query Builder