Lucene search
K

518 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/04 4:11 p.m.4 views

CVE-2026-23810

A vulnerability in the packet processing logic may allow an authenticated attacker to craft and transmit a malicious Wi-Fi frame that causes an Access Point AP to classify the frame as group-addressed traffic and re-encrypt it using the Group Temporal Key GTK associated with the victim's BSSID...

4.3CVSS5.9AI score0.00182EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/03/04 4:11 p.m.14 views

CVE-2026-23810

CVE-2026-23810 describes a vulnerability in wireless packet processing where an authenticated attacker can craft a malicious Wi‑Fi frame that leads an AP to treat it as group-addressed traffic and re-encrypt using the GTK tied to the victim’s BSSID. This enables GTK‑independent traffic injection ...

4.3CVSS5.9AI score0.00182EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/04 4:11 p.m.27 views

CVE-2026-23810 Cross-BSSID GTK Re-encryption and Traffic Injection

A vulnerability in the packet processing logic may allow an authenticated attacker to craft and transmit a malicious Wi-Fi frame that causes an Access Point AP to classify the frame as group-addressed traffic and re-encrypt it using the Group Temporal Key GTK associated with the victim's BSSID...

4.3CVSS0.00182EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/04 4:9 p.m.5 views

CVE-2026-23808 Client Isolation Bypass via GTK Manipulation

A vulnerability has been identified in a standardized wireless roaming protocol that could enable a malicious actor to install an attacker-controlled Group Temporal Key GTK on a client device. Successful exploitation of this vulnerability could allow a remote malicious actor to perform unauthoriz...

5.4CVSS5.9AI score0.00264EPSS
Exploits0References1
CVE
CVE
added 2026/03/04 4:9 p.m.18 views

CVE-2026-23808

Summary: CVE-2026-23808 describes a vulnerability in a standardized wireless roaming protocol that could allow an attacker to install an attacker-controlled Group Temporal Key (GTK) on a client device. This could enable unauthorized frame injection, bypass of client isolation, disruption of cross...

8.1CVSS5.9AI score0.00264EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/04 4:9 p.m.36 views

CVE-2026-23808 Client Isolation Bypass via GTK Manipulation

A vulnerability has been identified in a standardized wireless roaming protocol that could enable a malicious actor to install an attacker-controlled Group Temporal Key GTK on a client device. Successful exploitation of this vulnerability could allow a remote malicious actor to perform unauthoriz...

5.4CVSS0.00264EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/04 4:9 p.m.5 views

CVE-2026-23808

A vulnerability has been identified in a standardized wireless roaming protocol that could enable a malicious actor to install an attacker-controlled Group Temporal Key GTK on a client device. Successful exploitation of this vulnerability could allow a remote malicious actor to perform unauthoriz...

5.4CVSS5.9AI score0.00264EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.22 views

PT-2026-22944

Name of the Vulnerable Software and Affected Versions affected versions not specified Description A flaw in how network packets are handled could let an authorized attacker create a harmful Wi-Fi frame. This frame could trick an Access Point AP into treating it as group traffic and re-encrypting ...

4.3CVSS5.8AI score0.00182EPSS
Exploits0References4
Chainguard
Chainguard
added 2026/02/28 7:17 p.m.6 views

GHSA-9H8M-3FM2-QJRQ vulnerabilities

Vulnerabilities for packages: loki-fips, aws-node-termination-handler-fips, falcoctl, envoy-gateway, azurefile-csi-fips, loki, k3s, argo-rollouts-fips, tkn-fips, dagger, rekor-fips, dagdotdev, policy-controller-fips, verticadb-operator-fips, zitadel, cerbos, k3d, ceph-csi-operator, gitaly-fips,...

5.9AI score
Exploits0
Chainguard
Chainguard
added 2026/02/20 1:17 a.m.6 views

GHSA-FW7P-63QQ-7HPR vulnerabilities

Vulnerabilities for packages: loki-fips, age, rekor, envoy-gateway, nuclei, keda, croc, loki, k3s, argo-workflows-fips, tailscale, tkn-fips, rekor-fips, crossplane-provider-sql-fips, spicedb, cerbos, dex-fips, openfga, elastic-agent, trillian-fips, minio, hydra, seaweedfs-fips, spire-server, beat...

5.9AI score
Exploits0
Wolfi
Wolfi
added 2026/02/19 7:48 p.m.5 views

GHSA-FW7P-63QQ-7HPR vulnerabilities

Vulnerabilities for packages: hydra, sftpgo, witness, crossplane-provider-sql, tkn, trufflehog, trillian, kine, keda, step-kms-plugin, terragrunt, tailscale, aactl, kots, minio, mattermost, temporal, wolfictl, dgraph, gitea, certificate-transparency, grafana-alloy, telegraf, splunk-otel-collector...

5.9AI score
Exploits0
SUSE CVE
SUSE CVE
added 2026/02/19 12:26 a.m.3 views

SUSE CVE-2026-23223

In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchkbtreecheckblockowner We cannot dereference bs-cur when trying to determine if bs-cur aliases bs-sc-sa.bno,rmapcur after the latter has been freed. Fix this by sampling before type before any freeing could...

6.5CVSS5.7AI score0.0012EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/02/18 2:53 p.m.4 views

CVE-2026-23223

In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchkbtreecheckblockowner We cannot dereference bs-cur when trying to determine if bs-cur aliases bs-sc-sa.bno,rmapcur after the latter has been freed. Fix this by sampling before type before any freeing could...

5AI score0.0012EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/02/18 2:53 p.m.6 views

CVE-2026-23223 xfs: fix UAF in xchk_btree_check_block_owner

In the Linux kernel, the following vulnerability has been resolved: xfs: fix UAF in xchkbtreecheckblockowner We cannot dereference bs-cur when trying to determine if bs-cur aliases bs-sc-sa.bno,rmapcur after the latter has been freed. Fix this by sampling before type before any freeing could...

7.8CVSS5.2AI score0.0012EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2026/02/07 12:23 p.m.209 views

Exploit for CVE-2024-0070

CVE-2024-0070-NVIDIA-GPU-Driver--Resonance-Vulnerability NVIDI...

5.5AI score
Exploits1
GithubExploit
GithubExploit
added 2026/02/07 11:15 a.m.253 views

Exploit for Improper Initialization in Linux Linux_Kernel

markdown Chrono-Drip: Temporal Viscosity Exploitation Frame...

7.8CVSS7.6AI score0.88106EPSS
Exploits100
Packet Storm News
Packet Storm News
added 2026/02/05 12:0 a.m.9 views

Deep Learning for Contextualized NetFlow-Based Network Intrusion Detection: Methods, Data, Evaluation and Deployment

Network Intrusion Detection Systems NIDS have progressively shifted from signature-based techniques toward machine learning and, more recently, deep learning methods. Meanwhile, the widespread adoption of encryption has reduced payload visibility, weakening inspection pipelines that depend on...

5.5AI score
Exploits0
GithubExploit
GithubExploit
added 2026/02/01 5:31 p.m.184 views

Exploit for Reliance on Untrusted Inputs in a Security Decision in Microsoft

🏛️CTT -Microsoft Office OLE Manifold BYPASS CVE-2026-21509 Stan...

7.8CVSS7.5AI score0.72152EPSS
Exploits12
GithubExploit
GithubExploit
added 2026/01/31 6:40 a.m.233 views

Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft

SCTT-2026-33-0002: DWM Visual-Field Singularity 📡 Theoret...

7.8CVSS5.9AI score0.05028EPSS
Exploits5
GithubExploit
GithubExploit
added 2026/01/31 4:52 a.m.189 views

Exploit for Reliance on Untrusted Inputs in a Security Decision in Microsoft

CTT-NFS-Vortex-RCE New Physics Disclosure This repository cont...

7.8CVSS6AI score0.72152EPSS
Exploits12
Rows per page
Query Builder