Lucene search
K

14060 matches found

Cvelist
Cvelist
added yesterday18 views

CVE-2026-25268 Stack-based Buffer Overflow in WLAN Host

Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations...

8.8CVSS
Exploits0References1
CVE
CVE
added yesterday6 views

CVE-2026-25268

The CVE-2026-25268 issue is a stack-based buffer overflow in WLAN Host caused by memory corruption when processing invalid HT40 channel layouts during dynamic channel switching. Affects WLAN Host with a Local attack vector, requiring Low privileges and no user interaction, and with a changed scop...

8.8CVSS6AI score
Exploits0References1
Nuclei
Nuclei
added yesterday53 views

Acexy Wireless-N WiFi Repeater REV 1.0 - Repeater Password Disclosure

Acexy Wireless-N WiFi Repeater REV 1.0 is vulnerable to password disclosure because the password.html page of the web management interface contains the administrator account password in plaintext. id: CVE-2021-28937 info: name: Acexy Wireless-N WiFi Repeater REV 1.0 - Repeater Password Disclosure...

7.5CVSS7.1AI score0.05266EPSS
Exploits1References5
NVD
NVD
added 2 days ago6 views

CVE-2026-14721

A vulnerability has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. This affects an unknown function of the file /goform/ConfigWirelessBase5g of the component Web Endpoint. The manipulation of the argument ssid leads to stack-based buffer overflow. The attack is possible to be carried o...

9CVSS0.00447EPSS
Exploits0References5
Cvelist
Cvelist
added 2 days ago38 views

CVE-2026-14721 UTT HiPER 1250GW Web Endpoint ConfigWirelessBase_5g stack-based overflow

A vulnerability has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. This affects an unknown function of the file /goform/ConfigWirelessBase5g of the component Web Endpoint. The manipulation of the argument ssid leads to stack-based buffer overflow. The attack is possible to be carried o...

9CVSS0.00447EPSS
Exploits0References5
EUVD
EUVD
added 2 days ago8 views

EUVD-2026-41734

A vulnerability has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. This affects an unknown function of the file /goform/ConfigWirelessBase5g of the component Web Endpoint. The manipulation of the argument ssid leads to stack-based buffer overflow. The attack is possible to be carried o...

9CVSS7.6AI score0.00447EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2 days ago6 views

CVE-2026-14721

A vulnerability has been found in UTT HiPER 1250GW up to 3.2.7-210907-180535. This affects an unknown function of the file /goform/ConfigWirelessBase5g of the component Web Endpoint. The manipulation of the argument ssid leads to stack-based buffer overflow. The attack is possible to be carried o...

9CVSS7.6AI score0.00447EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2 days ago12 views

CVE-2026-14721

CVE-2026-14721 affects UTT HiPER 1250GW (up to 3.2.7-210907-180535). The vulnerability is in the Web Endpoint’s /goform/ConfigWirelessBase_5g function, where manipulating the ssid argument causes a stack-based buffer overflow. It can be exploited remotely, and the exploit has been disclosed publi...

9CVSS7.6AI score0.00447EPSS
Exploits0References5
Nuclei
Nuclei
added 2 days ago163 views

Cisco IOS XE WLC - Arbitrary File Upload

A vulnerability in the Out-of-Band Access Point AP Image Download feature of Cisco IOS XE Software for Wireless LAN Controllers WLCs could allow an unauthenticated, remote attacker to upload arbitrary files to an affected system.This vulnerability is due to the presence of a hard-coded JSON Web...

10CVSS7.3AI score0.17894EPSS
Exploits1References2
Nuclei
Nuclei
added 2 days ago38 views

Wireless Multiplex Terminal Playout Server <=20.2.8 - Default Credential Detection

Wireless Multiplex Terminal Playout Server =20.2.8 has a default account with a password of pokon available via its web administrative interface. id: CVE-2020-35338 info: name: Wireless Multiplex Terminal Playout Server =20.2.8 - Default Credential Detection author: Jeya Seelan severity: critical...

9.8CVSS7.2AI score0.11651EPSS
Exploits1References5
Nuclei
Nuclei
added 3 days ago94 views

Netgear-WN604 downloadFile.php - Information Disclosure

There is an information leakage vulnerability in the downloadFile.php interface of Netgear WN604. A remote attacker using file authentication can use this vulnerability to obtain the administrator account and password information of the wireless router, causing the router's background to be...

6.9CVSS6.2AI score0.45681EPSS
Exploits0References5
Nuclei
Nuclei
added 4 days ago46 views

Lantronix PremierWave 2050 8.9.0.0R4 - Remote Command Injection

Lantronix PremierWave 2050 8.9.0.0R4 contains an OS command injection vulnerability. A specially-crafted HTTP request can lead to command in the Web Manager Wireless Network Scanner. An attacker can make an authenticated HTTP request to trigger this vulnerability. id: CVE-2021-21881 info: name:...

9.9CVSS7.2AI score0.37064EPSS
Exploits1References4
Nuclei
Nuclei
added 4 days ago49 views

ADB/Pirelli ADSL2/2+ Wireless Router P.DGA4001N - Information Disclosure

ADB formerly Pirelli Broadband Solutions P.DGA4001N router with firmware PDGTEFSP4.06L.6 does not properly restrict access to the web interface, which allows remote attackers to obtain sensitive information or cause a denial of service device restart as demonstrated by a direct request to 1...

9.4CVSS6AI score0.39797EPSS
Exploits6References5
CVE
CVE
added 6 days ago12 views

CVE-2026-58452

The CVE covers JAIOTlink C492A-W6 Wi‑Fi IP cameras running firmware 4.8.30.57701411. Affected component is the NetSDK/Factory SetMAC HTTP PUT endpoint. The root cause is an OS command injection where a malicious Wireless parameter (starting with a MAC-like prefix, then a semicolon and a shell pay...

8.8CVSS6.4AI score0.02422EPSS
Exploits0References3
Debian CVE
Debian CVE
added last week5 views

CVE-2026-58374

In hostapd before 2.12, a missing bounds check in AP-mode Wi-Fi 7 IEEE 802.11be Multi-Link Operation MLO association request processing allows an unauthenticated attacker within wireless range to send a crafted management frame containing a malformed Multi-Link Element or Per-STA Profile...

7.1CVSS5.8AI score0.00282EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/29 7:50 p.m.4 views

kernel: wifi: mac80211: use safe list iteration in radar detect work

A flaw was found in the Linux kernel's mac80211 wireless subsystem. This vulnerability arises from unsafe list iteration during radar detection work, where a channel context can be freed while still being processed. This can lead to a use-after-free memory error. A successful exploit could result...

8.8CVSS7.1AI score0.00203EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/29 10:3 a.m.6 views

CVE-2026-53317

A flaw was found in the Linux kernel's Wi-Fi drivers mt76 and mt7921. A remote attacker could exploit this by configuring a Wi-Fi station with an Association ID AID exceeding the expected limit. This malformed AID can cause a firmware crash, leading to a Denial of Service DoS on the affected...

5.5CVSS5.8AI score0.00157EPSS
Exploits0References4
NVD
NVD
added 2026/06/29 7:16 a.m.7 views

CVE-2026-13539

A vulnerability was identified in Wavlink WL-NU516U1-A M16U1V240425. The impacted element is the function sub407504 of the file /cgi-bin/wireless.cgi of the component POST Parameter Handler. Such manipulation of the argument Guestssid leads to stack-based buffer overflow. The attack can be execut...

9CVSS0.00466EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/29 5:30 a.m.6 views

EUVD-2026-40037

A vulnerability was identified in Wavlink WL-NU516U1-A M16U1V240425. The impacted element is the function sub407504 of the file /cgi-bin/wireless.cgi of the component POST Parameter Handler. Such manipulation of the argument Guestssid leads to stack-based buffer overflow. The attack can be execut...

9CVSS6.4AI score0.00466EPSS
Exploits0References6
CVE
CVE
added 2026/06/29 5:30 a.m.14 views

CVE-2026-13539

The CVE concerns Wavlink WL-NU516U1-A M16U1_V240425. The vulnerable component is the POST Parameter Handler in /cgi-bin/wireless.cgi, specifically function sub_407504, where manipulation of Guest_ssid causes a stack-based buffer overflow. This can be triggered remotely; exploitation is publicly a...

9CVSS8AI score0.00466EPSS
Exploits0References6
Rows per page
Query Builder