Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001669)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001669 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes When moving a station out of a...

EUVD-2024-36781

Malicious code in bioql PyPI...

EUVD-2025-18357

Malicious code in bioql PyPI...

CVE-2025-38420

In the Linux kernel, the following vulnerability has been resolved: wifi: carl9170: do not ping device which has failed to load firmware Syzkaller reports 1, 2 crashes caused by an attempts to ping the device which has failed to load firmware. Since such a device doesn't pass 'ieee80211registerhw...

CVE-2025-38406 wifi: ath6kl: remove WARN on bad firmware input

In the Linux kernel, the following vulnerability has been resolved: wifi: ath6kl: remove WARN on bad firmware input If the firmware gives bad input, that's nothing to do with the driver's stack at this point etc., so the WARNON doesn't add any value. Additionally, this is one of the top syzbot...

CVE-2025-38199

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix memory leak due to multiple rxstats allocation rxstats for each arsta is allocated when adding a station. arsta-rxstats will be freed when a station is removed. Redundant allocations are occurring when the same...

CVE-2025-38159

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds Set the size to 6 instead of 2, since 'para' array is passed to 'rtwfwbtwificontrolrtwdev, para0, &para1', which reads 5 bytes: void rtwfwbtwificontrolstruct...

CVE-2024-42911

ECOVACS Robotics Deebot T20 OMNI and T20e OMNI before 1.24.0 was discovered to contain a WiFi Remote Code Execution vulnerability...

CVE-2023-41552

Tenda AC7 V1.0 V15.03.06.44 and Tenda AC9 V3.0 V15.03.06.42multi were discovered to contain a stack overflow via parameter ssid at url /goform/fastsettingwifiset...

CVE-2022-30473

Tenda AC Series Router AC18V15.03.05.196318 has a stack-based buffer overflow vulnerability in function formfastsettingwifiset...

CVE-2021-30667

A logic issue was addressed with improved validation. This issue is fixed in iOS 14.6 and iPadOS 14.6. An attacker in WiFi range may be able to force a client to use a less secure authentication mechanism...

CVE-2024-57234

NETGEAR RAX5 AX1600 WiFi Router V1.0.2.26 was discovered to contain a command injection vulnerability via the ifname parameter in the apclicancelwps function...

CVE-2025-1878

CVE-2025-1878 affects i-Drive i11/i12 (up to 20250227). The vulnerability concerns the WiFi component and enables use of a default password, requiring local-network access with high attack complexity. The product’s maintainer is not identified and the product appears end-of-life. No remediation d...

PSV-2023-0039

creationtimestamp| type| source ---|---|--- 2025-02-01 12:00:00+00:00| seen| https://kb.netgear.com/000066558/Security-Advisory-for-Unauthenticated-RCE-on-Some-WiFi-Routers-PSV-2023-0039 2025-02-10 18:21:16+00:00| seen| https://nvd.nist.gov/vuln/detail/CVE-2025-25246...

CVE-2024-48873 wifi: rtw89: check return value of ieee80211_probereq_get() for RNR

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: check return value of ieee80211probereqget for RNR The return value of ieee80211probereqget might be NULL, so check it before using to avoid NULL pointer access. Addresses-Coverity-ID: 1529805 "Dereference null retur...

CVE-2024-53190

The CVE 2024-53190 entry describes a Linux kernel issue in the Realtek RTLWiFi driver, where the efuse read path (read_efuse/read_efuse_byte during rtl8192cu probe) could loop up to 10k times on failure, causing extended system hang. The mitigated behavior is to drastically reduce retry attempts ...

CVE-2023-52531 wifi: iwlwifi: mvm: Fix a memory corruption issue

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix a memory corruption issue A few lines above, space is kzalloc'ed for: sizeofstruct iwlnvmdata + sizeofstruct ieee80211channel + sizeofstruct ieee80211rate 'mvm-nvmdata' is a 'struct iwlnvmdata', so it is...

PT-2023-18016 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue is related to a precondition check failure in the onAccessPointChanged method of AccessPointPreference.java. This could allow unprivileged apps to receive a broadcast about WiFi...

PT-2025-26104

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Description A division by zero exception in the Linux kernel's wifi driver, specifically in the rtw89 module, has been resolved. The issue occurred during RF calibration, where a negative...

PT-2022-14568 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android versions Android-13 Description: The issue is related to an insecure default value in WiFi, which could lead to the disclosure of the WiFi password to the end user. This results in local information disclosure without requiring...