18 matches found
EUVD-2023-39831
Malicious code in bioql PyPI...
EUVD-2024-52203
Malicious code in bioql PyPI...
CVE-2024-53941
An issue was discovered in Victure RX1800 WiFi 6 Router software ENV1.0.0r12110933, hardware 1.0 devices. A remote attacker in proximity to a Wi-Fi network can derive the default Wi-Fi PSK value via the last 4 octets of the BSSID...
CVE-2023-35836
An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. An attacker within RF range can obtain a cleartext copy of the network configuration of the device, including the Wi-Fi PSK, during device setup and reconfiguration. Upon success, the attacker is able to further infiltrate the...
CVE-2024-53941
An issue was discovered in Victure RX1800 WiFi 6 Router software ENV1.0.0r12110933, hardware 1.0 devices. A remote attacker in proximity to a Wi-Fi network can derive the default Wi-Fi PSK value via the last 4 octets of the BSSID...
CVE-2024-53941
CVE-2024-53941 affects the Victure RX1800 WiFi 6 Router (software EN_V1.0.0_r12_110933, hardware 1.0). The issue allows a nearby attacker to derive the default Wi‑Fi PSK value from the last 4 octets of the BSSID, enabling potential unauthenticated access to protected wireless networks. Impact is ...
CVE-2023-35836
An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. An attacker within RF range can obtain a cleartext copy of the network configuration of the device, including the Wi-Fi PSK, during device setup and reconfiguration. Upon success, the attacker is able to further infiltrate the...
CVE-2023-35836
An issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. An attacker within RF range can obtain a cleartext copy of the network configuration of the device, including the Wi-Fi PSK, during device setup and reconfiguration. Upon success, the attacker is able to further infiltrate the...
CVE-2023-35836
The CVE-2023-35836 issue affects SolaX Pocket WiFi versions 3 through 3.001.02. A nearby attacker (RF range) can capture a plaintext copy of the device’s network configuration, including the Wi‑Fi PSK, during setup or reconfiguration. This enables further access to the target’s Wi‑Fi networks. Re...
CVE-2020-15023
Askey AP5100W devices through AP5100WDualSIG1.01.097 are affected by WPS PIN offline brute-force cracking. This arises because of issues with the random number selection for the Diffie-Hellman exchange. By capturing an attempted and even failed WPS authentication attempt, it is possible to brute...
Authentication flaw
Askey AP5100W devices through AP5100WDualSIG1.01.097 are affected by WPS PIN offline brute-force cracking. This arises because of issues with the random number selection for the Diffie-Hellman exchange. By capturing an attempted and even failed WPS authentication attempt, it is possible to brute...
CVE-2020-15023
Askey AP5100W devices through AP5100WDualSIG1.01.097 are affected by WPS PIN offline brute-force cracking. This arises because of issues with the random number selection for the Diffie-Hellman exchange. By capturing an attempted and even failed WPS authentication attempt, it is possible to brute...
CVE-2020-9462
An issue was discovered in all Athom Homey and Homey Pro devices up to the current version 4.2.0. An attacker within RF range can obtain a cleartext copy of the network configuration of the device, including the Wi-Fi PSK, during device setup. Upon success, the attacker is able to further...
Design/Logic Flaw
An issue was discovered in all Athom Homey and Homey Pro devices up to the current version 4.2.0. An attacker within RF range can obtain a cleartext copy of the network configuration of the device, including the Wi-Fi PSK, during device setup. Upon success, the attacker is able to further...
CVE-2020-9462
An issue was discovered in all Athom Homey and Homey Pro devices up to the current version 4.2.0. An attacker within RF range can obtain a cleartext copy of the network configuration of the device, including the Wi-Fi PSK, during device setup. Upon success, the attacker is able to further...
Hijacking Philips Hue
We were filming a smart home hacking piece on the 5th May this year. Like most home users, the Wi-Fi PSK wasn’t strong enough, so we cracked it and joined the network. The user had a Philips Hue lighting system. None of us here had looked at Hue before - we made an assumption after the previous...
Design/Logic Flaw
English/pagesMacUS/wlssetcontent.html on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers shows the Wi-Fi PSK passphrase in cleartext, which allows physically proximate attackers to obtain sensitive information by reading the screen of an unattended...
CVE-2013-4614
English/pagesMacUS/wlssetcontent.html on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers shows the Wi-Fi PSK passphrase in cleartext, which allows physically proximate attackers to obtain sensitive information by reading the screen of an unattended...