225 matches found
SUSE CVE-2017-13081
Wi-Fi Protected Access WPA and WPA2 that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key IGTK during the group key handshake, allowing an attacker within radio range to spoof frames from access points to clients...
SUSE CVE-2020-26147
An issue was discovered in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames...
CVE-2023-0613
A vulnerability has been found in TRENDnet TEW-811DRU 1.0.10.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /wireless/security.asp of the component httpd. The manipulation leads to memory corruption. The attack can be launched remotely. The...
PT-2022-17453 · Qualcomm · Snapdragon Consumer Iot +2
Name of the Vulnerable Software and Affected Versions: Snapdragon Consumer IOT affected versions not specified Snapdragon Industrial IOT affected versions not specified Snapdragon Voice & Music affected versions not specified Description: The issue concerns cryptographic problems in WLAN during t...
Design/Logic Flaw
A vulnerability in the client forwarding code of multiple Cisco Access Points APs could allow an unauthenticated, adjacent attacker to inject packets from the native VLAN to clients within nonnative VLANs on an affected device. This vulnerability is due to a logic error on the AP that forwards...
PT-2022-6018 · Cisco · Cisco Catalyst 9100 Series Access Points
Name of the Vulnerable Software and Affected Versions: Cisco Catalyst 9100 Series Access Points affected versions not specified Description: A vulnerability in the 802.11 association frame validation could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on a...
PT-2022-14871 · Intel · Intel Proset/Wireless Wifi
Name of the Vulnerable Software and Affected Versions: IntelR PROSet/Wireless WiFi products affected versions not specified Description: The issue is related to inadequate encryption strength, which may allow an unauthenticated user to potentially enable escalation of privilege via adjacent acces...
Reolink Rlc-410W 信息泄露漏洞
Reolink Rlc-410W is a Wifi security camera from Reolink China. reolink RLC-410W in v3.0.0.13620121102 is vulnerable to information disclosure, which stems from information disclosure due to web server configuration errors. An attacker could use this vulnerability to obtain sensitive information...
Reolink Rlc-410W 输入验证错误漏洞
Reolink Rlc-410W is a Wifi security camera from Reolink China.Reolink RLC-410W has a security vulnerability that can be exploited by attackers to cause a denial of service...
Reolink Rlc-410W 输入验证错误漏洞
Reolink Rlc-410W is a Wifi security camera from Reolink China.Reolink RLC-410W has a security vulnerability that can be exploited by attackers to cause a denial of service...
Reolink Rlc-410W 输入验证错误漏洞
Reolink Rlc-410W is a Wifi security camera from Reolink China.Reolink RLC-410W has a security vulnerability that can be exploited by attackers to cause a denial of service...
TP-Link AX10安全漏洞
TP-Link AX10 is a router from Tp-link, China. TP-Link AX10 has a security vulnerability that could be exploited to disconnect a connected wireless client by sending a spoofed authentication frame specific to the wireless adapter...
Anker Eufy Homebase 2 Buffer Overflow Vulnerability
Anker Eufy Homebase is a wireless home security camera system from Eufy U.S.A. A buffer overflow vulnerability exists in Anker Eufy Homebase 2 version 2.1.6.9h, which can be exploited by attackers to cause code execution...
Eufy Anker Eufy Homebase 2 Access Control Error Vulnerability
Anker Eufy Homebase is a wireless home security camera system from Eufy U.S.A. An access control error vulnerability exists in Anker Eufy Homebase 2, which stems from the failure of the CMDDEVICEGETRSAKEYREQUEST function in the product's homesecurity file to correctly handle specially crafted...
Eufy Anker Eufy Homebase 2 out-of-bounds write vulnerability
Anker Eufy Homebase is a wireless home security camera system from Eufy U.S.A. An out-of-bounds write vulnerability exists in Anker Eufy Homebase version 2.1.6.9h, which can be exploited by attackers to cause code execution via specially crafted network packets...
kernel: accepting unencrypted A-MSDU frames that start with RFC1042 header
A flaw was found in the Linux kernel, where the WiFi implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 ex., LLC/SNAP header for EAPOL. The highest threat from this vulnerability is to integrity...
NSA issues advice for securing wireless devices
By releasing an information sheet that provides guidance on securing wireless devices while in public pdf—for National Security System, Department of Defense, and Defense Industrial Base teleworkers—the NSA has provided useful information on malicious techniques used by cyber actors, and ways to...
The vulnerability of implementations of WEP, WPA, WPA2, and WPA3 algorithms in the Linux operating system allows attackers to compromise the integrity of protected information.
The vulnerability of implementations of WEP, WPA, WPA2, and WPA3 algorithms in Linux operating systems exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to compromise the integrity of protected information by using specially crafted...
SUSE-SU-2021:1977-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in...
Check Point Response to Wi-Fi FragAttacks in Quantum Spark appliances
Cause Several CVEs were published on Wi-Fi devices under the name FragAttacks. More information about them can be found at: https://www.fragattacks.com/ The list of new CVEs related to wireless security flaws with fragmented and aggregated frames, is relevant to Check Point Quantum Spark wireless...