The vulnerability of the Telnet protocol implementation in microcomputer-based Wi-Fi chips from Quantenna allows a intruder to gain unauthorized access to the device.

The vulnerability of the Telnet protocol implementation in Quantenna’s microprogrammable Wi-Fi chips lies in the lack of authentication for critical functions. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to the device...

CVE-2020-10369

Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow inferences about memory content via a "Spectra" attack...

CVE-2020-10368

Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow memory read access via a "Spectra" attack...

SUSE CVE-2020-10367

Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow memory access via a "Spectra" attack...

SUSE CVE-2020-10370

Certain Cypress and Broadcom Wireless Combo chips such as CYW43455, when a 2021-01-26 Bluetooth firmware update is not present, allow a Bluetooth outage via a "Spectra" attack...

SUSE CVE-2020-10368

Certain Cypress and Broadcom Wireless Combo chips, when a January 2021 firmware update is not present, allow memory read access via a "Spectra" attack...

Researchers Find Potential Way to Run Malware on iPhone Even When it's OFF

A first-of-its-kind security analysis of iOS Find My function has identified a novel attack surface that makes it possible to tamper with the firmware and load malware onto a Bluetooth chip that's executed while an iPhone is "off." The mechanism takes advantage of the fact that wireless chips...

CVE-2019-18990

A partial authentication bypass vulnerability exists on Realtek RTL8812AR 1.21WW, RTL8196D 1.0.0, RTL8192ER 2.10, and RTL8881AN 1.09 devices. The vulnerability allows sending an unencrypted data frame to a WPA2-protected WLAN router where the packet is routed through the network. If successful, a...

Researcher Finds Holes Aplenty in Wireless Chips

A new study from Prof. Avishai Wool of Tel Aviv University’s School of Electrical Engineering finds serious security drawbacks in chips that are being embedded in credit, debit and “smart” cards. The vulnerabilities of this electronic approach — and the vulnerability of the private information...