PT-2026-36889

Name of the Vulnerable Software and Affected Versions Android versions 14 through 16 Description A logic error in the adbd tls verify cert function within auth.cpp of the Android Debug Bridge ADB daemon allows a bypass of wireless ADB mutual authentication. The issue stems from a type confusion...

ASB-A-469080888

In adbdtlsverifycert of auth.cpp, there is a possible bypass of wireless ADB mutual authentication due to a logic error in the code. This could lead to remote proximal/adjacent code execution as the shell user with no additional execution privileges needed. User interaction is not needed for...

EUVD-2015-0736

Malware in sbrugna...

CVE-2023-37325

D-Link DAP-2622 DDP Set SSID List Missing Authentication Vulnerability. This vulnerability allows network-adjacent attackers to make unauthorized changes to device configuration on affected installations of D-Link DAP-2622 routers. Authentication is not required to exploit this vulnerability. The...

SUSE CVE-2006-7180

ieee80211output.c in MadWifi before 0.9.3 sends unencrypted packets before WPA authentication succeeds, which allows remote attackers to obtain sensitive information related to network structure, and possibly cause a denial of service disrupted authentication and conduct spoofing attacks...

SUSE CVE-2006-7246

NetworkManager 0.9.x does not pin a certificate's subject to an ESSID when 802.11X authentication is used...

PT-2023-9106 · D Link · D-Link Dap-2622

Name of the Vulnerable Software and Affected Versions: D-Link DAP-2622 affected versions not specified Description: The issue is related to the lack of authentication for a critical function in the DDP service of the D-Link DAP-2622 wireless access point's firmware. This allows a remote attacker ...

CVE-2021-40288

A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in TP-Link AX10v1 before V1211014, allows a remote unauthenticated attacker to disconnect an already connected wireless client via sending with a wireless adapter specific spoofed authentication frames...

CVE-2020-3390 Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Trap Denial of Service Vulnerability

A vulnerability in Simple Network Management Protocol SNMP trap generation for wireless clients of the Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause the device to unexpectedly reload, causing a denial of...

PT-2020-4173 · Cisco · Cisco Ios Xe Wireless Controller +1

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family affected versions not specified Description: A vulnerability in Simple Network Management Protocol SNMP trap generation for wireless clients could allow an...

DEBIAN-CVE-2019-13377

The implementations of SAE and EAP-pwd in hostapd and wpasupplicant 2.x through 2.8 are vulnerable to side-channel attacks as a result of observable timing differences and cache access patterns when Brainpool curves are used. An attacker may be able to gain leaked information from a side-channel...

July 24, 2018—KB4340917 (OS Build 17134.191)

July 24, 2018—KB4340917 OS Build 17134.191 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Important changes include the following: Addresses an issue that causes devices within Active Directory or Hybrid AADJ...

ALPINE-CVE-2018-14526

An issue was discovered in rsnsupp/wpa.c in wpasupplicant 2.0 through 2.6. Under certain conditions, the integrity of EAPOL-Key messages is not checked, leading to a decryption oracle. An attacker within range of the Access Point and client can abuse the vulnerability to recover sensitive...

Targeted Evil Twin Wireless Access Point Attack Toolkit: The Rogue Toolkit

The Rogue Toolkit is an extensible toolkit aimed at providing penetration testers an easy-to-use platform to deploy software-defined Access Points AP for the purpose of conducting penetration testing and red team engagements. By using Rogue, penetration testers can easily perform targeted evil tw...

FortiAuthenticator v300 build 0007 Multiple Vulnerabilities

Fortinet FortiAuthenticator suffers from subshell bypass, cross site scripting, password disclosure, and file disclosure vulnerabilities. Fortinet FortiAuthenticator Multiple Vulnerabilities Affected Versions: Verified on FortiAuthenticator v300 build 0007 +-------------+ | Description |...

2Wire Routers - Cross-Site Request Forgery Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27246/info Multiple 2Wire routers are prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to execute arbitrary actions on an affected device. Set a password NUEVOPASS:...

Tenda W309R Router 5.07.46 - Configuration Disclosure

--------------------------------------------------- Exploit Title: Tenda W309R Configuration Enumeration without Authentication Author: SANTHO Vendor Homepage: http://www.tenda.cn Product link: http://www.tenda.cn/tendacn/product/show.aspx?productid=382 Category: Hardware/Wireless Router Firmware...

Microsoft Windows Phone PEAP-MS-CHAPv2身份验证协议安全漏洞

BUGTRAQ ID: 61592 Microsoft Windows Phone是微软开发的系列移动设备操作系统。 Windows Phone 8、Windows Phone 7.8用于WPA2无线身份验证的PEAP-MS-CHAPv2中存在安全漏洞，攻击者可利用此漏洞获取目标设备的敏感信息。要利用此漏洞，攻击者控制的系统需要充当已知的Wi-Fi访问点，使目标设备自动与该访问点进行身份验证，攻击者然后可以截获受害者的加密域证书，再利用PEAP-MS-CHAPv2协议内的漏洞获取网络资源。 0 Microsoft Windows Phone 8 Microsoft Windows Pho...

Aruba Mobility Controller Shared Default Certificate

Aruba Mobility Controller Shared Default Certificate Product: Aruba Mobility Controller http://www.arubanetworks.com/products/mobilitycontrollers.php Aruba mobility controllers use X.509 certificates to protect access to the web management interface and to provide secure wireless authentication,...

2WIRE Routers - Cross-Site Request Forgery

source: https://www.securityfocus.com/bid/27246/info Multiple 2Wire routers are prone to a cross-site request-forgery vulnerability. Exploiting this issue may allow a remote attacker to execute arbitrary actions on an affected device. Set a password NUEVOPASS:...