CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CVE-2026-36616

Mercusys AC12G EU V1 with firmware AC12GEUV1200909 contains hardcoded WiFi driver credentials including a RADIUS shared secret, WPS test key, and default PSK embedded in the production firmware binary...

5.9CVSS5.8AI score0.00018EPSS

Exploits0References1

NVD•added 2 days ago•6 views

CVE-2026-36612

Mercusys AC12G EU V1 with firmware AC12GEUV1200909 enables WPS 2.0 by default with a weak lockout policy 60-second lockout after 10 attempts...

6.4CVSS0.00018EPSS

Exploits0References1

EUVD•added 2026/03/20 9:32 a.m.•3 views

EUVD-2026-13600

A vulnerability was determined in Yi Technology YI Home Camera 2 2.1.120171024151200. This affects an unknown function of the component WPA/WPS. Executing a manipulation can lead to use of hard-coded cryptographic key . The attack can only be done within the local network. This attack is...

3.1CVSS5.2AI score0.00006EPSS

Exploits0References4

CVE•added 2025/11/07 8:51 a.m.•7 views

CVE-2025-46413

CVE-2025-46413 affects BUFFALO WSR-1800AX4 series Wi‑Fi routers. The issue is use of a password hash with insufficient computational effort (CWE-916) when WPS is enabled, potentially allowing an attacker to obtain the PIN and/or Wi‑Fi password. Public documents identify the affected component as ...

5.3CVSS6.9AI score0.00009EPSS

Exploits0References2

SUSE CVE•added 2023/02/15 5:18 a.m.•1 views

SUSE CVE-2015-4141

The WPS UPnP function in hostapd, when using WPS AP, and wpasupplicant, when using WPS external registrar ER, 0.7.0 through 2.4 allows remote attackers to cause a denial of service crash via a negative chunk length, which triggers an out-of-bounds read or heap-based buffer overflow...

4.3CVSS7.2AI score0.01465EPSS

Exploits0References10

CNNVD•added 2021/12/26 12:0 a.m.•1 views

NETGEAR 缓冲区错误漏洞

Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. A security vulnerability exists in NETGEAR that stems from the mishandling of the WPS Wi-Fi Protected Setup protocol by MediaTek microchips...

9.3CVSS7.9AI score0.00549EPSS

Exploits0References3

CNNVD•added 2021/12/26 12:0 a.m.•3 views

NETGEAR 缓冲区错误漏洞

9.3CVSS7.9AI score0.00549EPSS

Exploits0References3

CNNVD•added 2021/12/26 12:0 a.m.•1 views

NETGEAR 缓冲区错误漏洞

Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. NETGEAR A security vulnerability exists that stems from the fact that the WPS Wi-Fi Protected Setup protocol will be incorrectly handled if...

8.2CVSS7.3AI score0.00562EPSS

Exploits0References3

Gitee•added 2020/08/23 9:53 p.m.•3 views

KITT-Lite

This is a Python-based pentesting CLI tool. The tool is designed to extract WPS Wi-Fi Protected Setup pins from vulnerable routers. It uses various tools such as Piexiewps, Reaver, Bully, Aircrack Suite, and Wash in an automated way to achieve its goal. The tool is likely used for penetration...

6.7AI score

Exploits0

Japan Vulnerability Notes•added 2016/06/22 5:57 a.m.•1 views

CG-WLR300GNV Series does not limit authentication attempts

Overview CG-WLR300GNV and CG-WLR300GNV-W provided by Corega Inc are wireless LAN routers. The WPS functionality in CG-WLR300GNV Series does not limit PIN authentication attempts, making it susceptible to brute force attacks. Takeshi Okamoto of Kanagawa Institute of Technology and Takaaki Minegish...

5.3CVSS7.1AI score0.00338EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by