226 matches found
CVE-2024-20148
In wlan STA FW, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389045 / ALPS09136494; Issue ID:...
CVE-2024-20148
CVE-2024-20148 concerns MediaTek wlan STA FW where an improper input validation leads to an out-of-bounds write. The vulnerability could enable remote code execution on proximal devices with no privileges and no user interaction required. Patch IDs associated are WCNCR00389045 and ALPS09136494 (M...
CVE-2024-20146
In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389496 / ALPS09137491; Issue I...
CVE-2024-20146
In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote proximal/adjacent code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389496 / ALPS09137491; Issue I...
CVE-2024-20146
The CVE-2024-20146 issue affects MediaTek wlan STA driver and is caused by improper input validation leading to an out-of-bounds write. This can allow remote code execution with no additional privileges and without user interaction, affecting adjacent systems and potentially enabling high-severit...
PT-2025-2282 · Wlan Sta · Wlan Sta
Name of the Vulnerable Software and Affected Versions: WLAN STA affected versions not specified Description: In WLAN STA, there is a possible way to trick a client to connect to an AP with spoofed SSID. This could lead to remote information disclosure with no additional execution privileges neede...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from a denial of service that may occur when the driver parses each STA profile IE and attempts to access the EXTN element ID without checking the IE length...
PT-2025-2281 · Unknown · Wlan Sta Driver
Name of the Vulnerable Software and Affected Versions: WLAN STA driver affected versions not specified Description: The issue is related to a reachable assertion in the WLAN STA driver due to improper exception handling. This could lead to a local denial of service if a malicious actor has alread...
CVE-2024-50367
A CWE-78 "Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'" was discovered affecting the following devices manufactured by Advantech: EKI-6333AC-2G = 1.6.3, EKI-6333AC-2GD = v1.6.3 and EKI-6333AC-1GPO = v1.2.1. The source of the vulnerability relies on...
PT-2024-9483
Name of the Vulnerable Software and Affected Versions: Advantech EKI-6333AC-2G versions 1.6.3 and earlier Advantech EKI-6333AC-2GD versions 1.6.3 and earlier Advantech EKI-6333AC-1GPO versions 1.2.1 and earlier Description: A security issue was discovered in the "sta log htm" API of Advantech's...
The vulnerability of the mac80211 component in the Linux operating system allows a hacker to gain access to confidential information.
The vulnerability of the mac80211 component in the Linux operating system’s kernel is related to the disclosure of information through the stainfofree function. Exploiting this vulnerability can allow an attacker to gain access to confidential information...
CVE-2024-38403
Transient DOS while parsing BTM ML IE when per STA profile is not included...
CVE-2024-38403 Buffer Over-read in WLAN Firmware
Transient DOS while parsing BTM ML IE when per STA profile is not included...
CVE-2024-38403 Buffer Over-read in WLAN Firmware
Transient DOS while parsing BTM ML IE when per STA profile is not included...
CVE-2024-38403
CVE-2024-38403 affects Qualcomm closed‑source WLAN firmware components. It describes a transient denial‑of‑service that occurs when parsing the BTM ML IE if the per‑STA profile is not included. The entry assigns a high impact and network‑level exposure with low attack complexity and no user inter...
UBUNTU-CVE-2024-49929
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: avoid NULL pointer dereference iwlmvmtxskbsta and iwlmvmtxmpdu verify that the mvmvsta pointer is not NULL. It retrieves this pointer using iwlmvmstafrommac80211, which is dereferencing the ieee80211sta pointe...
PT-2024-33770
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: A NULL pointer dereference issue has been resolved in the Linux kernel. The issue occurs in the iwl mvm tx skb sta and iwl mvm tx mpdu functions, which verify that the mvmvsta pointer is not...
kernel: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()
A vulnerability was found in the Linux kernel's mac80211 component within the ieee80211stapsdeliverwakeup function, where improper locking of the sta-pslock can lead to a deadlock condition, which occurs because the function uses a spin lock without preventing softirq execution on the same CPU,...
kernel: wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()
A vulnerability was found in the Linux kernel's mac80211 component within the ieee80211stapsdeliverwakeup function, where improper locking of the sta-pslock can lead to a deadlock condition, which occurs because the function uses a spin lock without preventing softirq execution on the same CPU,...
CVE-2024-43911 wifi: mac80211: fix NULL dereference at band check in starting tx ba session
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL dereference at band check in starting tx ba session In MLD connection, linkdata/linkconf are dynamically allocated. They don't point to vif-bssconf. So, there will be no chanreq assigned to vif-bssconf an...