Astra Linux - уязвимость в linux-5.15, linux-5.10, linux

A use-after-free in the mac80211 stack, during the parsing of a multi-BSSID element in the Linux kernel versions 5.2 through 5.19.x before 5.19.16, could be exploited by attackers who have access to injecting WLAN frames. This exploitation could lead to kernel crashes and potentially allow them t...

Astra Linux - уязвимость в linux-5.10, linux-5.15

An issue was discovered in the Linux kernel before 6.0.11. Missing validation of the number of channels in drivers/net/wireless/microchip/wilc1000/cfg80211.c in the WILC1000 wireless driver can trigger a heap-based buffer overflow when copying the list of operating channels from Wi-Fi management...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15

Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel versions 5.1 through 5.19.x, prior to 5.19.16, could be exploited by local attackers those capable of injecting WLAN frames to trigger use-after-free conditions, potentially allowing them to execute...

SUSE CVE-2026-25061

tcpflow is a TCP/IP packet demultiplexer. In versions up to and including 1.61, wifipcap parses 802.11 management frame elements and performs a length check on the wrong field when handling the TIM element. A crafted frame with a large TIM length can cause a 1-byte out-of-bounds write past...

CVE-2025-14631

The CVE-2025-14631 vulnerability is a NULL pointer dereference in TP-Link Archer BE400 V1 (802.11 modules) that enables an adjacent attacker to cause a denial-of-service by triggering a device reboot. Affected device: Archer BE400 with 1.1.0 build 20250710 rel.14914. Root cause is unspecified in ...

EUVD-2024-18069

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-42720

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers...

wifi-arsenal

This repository is an offensive tool for WiFi exploitation. It is a collection of tools and scripts for various WiFi-related attacks, including denial of service, encryption attacks, WEP/WPA/WPA2 attacks, WPS attacks, and others. The repository is maintained by 0x90/wifi-arsenal. The repository...

MediaTek 芯片 安全漏洞

MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from incorrect validation of wlan frame inputs and possible out-of-bounds writes...

CVE-2024-20354

A vulnerability in the handling of encrypted wireless frames of Cisco Aironet Access Point AP Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on the affected device. This vulnerability is due to incomplete cleanup of resources when dropping...

CVE-2024-20354

A vulnerability in the handling of encrypted wireless frames of Cisco Aironet Access Point AP Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on the affected device. This vulnerability is due to incomplete cleanup of resources when dropping...

CVE-2024-20354

A vulnerability in the handling of encrypted wireless frames of Cisco Aironet Access Point AP Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on the affected device. This vulnerability is due to incomplete cleanup of resources when dropping...

CVE-2024-20354

Summary: CVE-2024-20354 affects Cisco Aironet Access Point (AP) Software. The vulnerability stems from incomplete cleanup of resources when dropping certain malformed encrypted wireless frames, allowing an unauthenticated, adjacent attacker (wireless client) to cause degradation of service or a p...

PT-2024-18652 · Cisco · Cisco Aironet Access Point

Name of the Vulnerable Software and Affected Versions: Cisco Aironet Access Point AP Software affected versions not specified Description: A vulnerability in the handling of encrypted wireless frames could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on t...

SUSE CVE-2022-42720

Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers able to inject WLAN frames to trigger use-after-free conditions to potentially execute code...

SUSE CVE-2022-42721

A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers able to inject WLAN frames to corrupt a linked list and, in turn, potentially execute code...

Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to trigger use-after-free conditions to potentially execute code.

...

A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to corrupt a linked list and in turn potentially execute code.

...

AZL-11116 CVE-2022-42720 affecting package kernel for versions less than 5.15.74.1-3

Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers able to inject WLAN frames to trigger use-after-free conditions to potentially execute code...

AZL-11117 CVE-2022-42721 affecting package kernel for versions less than 5.15.74.1-3

A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers able to inject WLAN frames to corrupt a linked list and, in turn, potentially execute code...