Lucene search
K

8 matches found

Vulnrichment
Vulnrichment
added 2026/06/12 6:24 p.m.13 views

CVE-2026-50099 Naxclow IoT Platform Insertion of sensitive information into Externally-Accessible file or directory

During WiFi association, Naxclow device firmware prints the host network’s SSID, PSK, and negotiated WPA keys in cleartext to an exposed UART console on production hardware. The UART pads are labeled, run with default serial settings, and drop to an interactive RT-Thread shell that permits...

5.1CVSS5.3AI score0.00171EPSS
Exploits0References2
OSV
OSV
added 2025/10/24 10:12 a.m.9 views

SUSE-SU-2025:20883-1 Security update for kernel-livepatch-MICRO-6-0_Update_8

This update for kernel-livepatch-MICRO-6-0Update8 fixes the following issues: - CVE-2025-38206: exfat: fix double free in delayedfree bsc1246075 - CVE-2025-38396: fs: export anoninodemakesecureinode and fix secretmem LSM bypass bsc1247158 - CVE-2025-38471: kernel: tls: always refresh the queue wh...

7.8CVSS6.6AI score0.00528EPSS
Exploits1References17
OSV
OSV
added 2025/10/22 9:45 a.m.2 views

SUSE-SU-2025:3720-1 Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024173 fixes several issues. The following security issues were fixed: - CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns...

5.5CVSS7.9AI score0.00202EPSS
Exploits1References7
OSV
OSV
added 2025/10/20 5:4 a.m.7 views

SUSE-SU-2025:03672-1 Security update for the Linux Kernel (Live Patch 59 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059211 fixes several issues. The following security issues were fixed: - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns bsc1248673. - CVE-2025-21971: netsched: Prevent creation of classes with TCHROOT...

7.8CVSS7.9AI score0.00187EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/10/07 3:19 p.m.15 views

CVE-2022-50533 wifi: mac80211: mlme: fix null-ptr deref on failed assoc

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: mlme: fix null-ptr deref on failed assoc If association to an AP without a link 0 fails, then we crash in tracing because it assumes that either apmldaddr or link 0 BSS is valid, since we clear sdata-vif.validlink...

0.00145EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/04 12:0 a.m.7 views

PT-2025-40682

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the wifi subsystem, specifically in the cfg80211 component. The issue involves accepting authentication or association requests from an Access Poi...

5.5CVSS6.3AI score0.00145EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/03/22 12:0 a.m.6 views

PT-2023-2191 · Cisco · Cisco Catalyst 9100 +2

Name of the Vulnerable Software and Affected Versions: Cisco Business 150 versions affected versions not specified Cisco Business 151 Mesh Extenders versions affected versions not specified Cisco Catalyst 9100 versions affected versions not specified Description: The issue is related to a buffer...

7.4CVSS6.7AI score0.00303EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/09/28 11:0 p.m.6 views

CVE-2022-20945

A vulnerability in the 802.11 association frame validation of Cisco Catalyst 9100 Series Access Points APs could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient input validation of certain...

7.4CVSS6.6AI score0.00425EPSS
Exploits0References2
Rows per page
Query Builder