25 matches found
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Wifi: ath9k: Delay all operations related to ath9kwmieventtasklet until initialization is complete. The ath9kwmieventtasklet function used in ath9khtc assumes that all data structures have been fully initialized by the time it...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007251)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007251 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: delay all of ath9kwmieventtasklet until init is complete The ath9kwmieventtasklet us...
WMI Event Subscription Logon Timer Persistence
This module will create a permanent WMI event subscription to achieve file-less persistence using an event filter that will trigger the payload after the system has a certain uptime. Payloads will trigger every minute until the set end time. Additionally a custom command can be specified to run...
CVE-2023-53602
CVE-2023-53602 affects the Linux kernel driver stack for wifi (ath11k). The issue is a memory leak where firmware statistics for pdev, vdev and beacon were allocated but not released on module removal, prompting a fix implemented by calling ath11k_fw_stats_free() before hardware unregister. Addit...
EUVD-2023-25823
Malicious code in bioql PyPI...
EUVD-2023-32223
Malicious code in bioql PyPI...
CVE-2023-28553
Information Disclosure in WLAN Host when processing WMI event command...
CVE-2024-46768
In the Linux kernel, the following vulnerability has been resolved: hwmon: hp-wmi-sensors Check if WMI event data exists The BIOS can choose to return no event data in response to a WMI event, so the ACPI object passed to the WMI notify handler can be NULL. Check for such a situation and ignore t...
CVE-2024-46768 hwmon: (hp-wmi-sensors) Check if WMI event data exists
In the Linux kernel, the following vulnerability has been resolved: hwmon: hp-wmi-sensors Check if WMI event data exists The BIOS can choose to return no event data in response to a WMI event, so the ACPI object passed to the WMI notify handler can be NULL. Check for such a situation and ignore t...
CVE-2024-46768 hwmon: (hp-wmi-sensors) Check if WMI event data exists
In the Linux kernel, the following vulnerability has been resolved: hwmon: hp-wmi-sensors Check if WMI event data exists The BIOS can choose to return no event data in response to a WMI event, so the ACPI object passed to the WMI notify handler can be NULL. Check for such a situation and ignore t...
CVE-2024-46768
CVE-2024-46768 is rejected/not active. The connected Nessus entry explicitly states that this CVE ID was rejected/withdrawn by its CVE Numbering Authority, so it does not represent an active vulnerability in the published records.
SUSE CVE-2023-52829
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix possible out-of-bound write in ath12kwmiexthalregcaps regcap.phyid is extracted from WMI event and could be an unexpected value in case some errors happen. As a result out-of-bound write may occur to...
CVE-2023-52829 wifi: ath12k: fix possible out-of-bound write in ath12k_wmi_ext_hal_reg_caps()
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix possible out-of-bound write in ath12kwmiexthalregcaps regcap.phyid is extracted from WMI event and could be an unexpected value in case some errors happen. As a result out-of-bound write may occur to...
CVE-2023-28553
Information Disclosure in WLAN Host when processing WMI event command...
CVE-2023-28553 Buffer Over-read in WLAN Host
Information Disclosure in WLAN Host when processing WMI event command...
CVE-2023-28553 Buffer Over-read in WLAN Host
Information Disclosure in WLAN Host when processing WMI event command...
CVE-2023-28553
CVE-2023-28553 is a Qualcomm WLAN Host vulnerability described as Information Disclosure when processing WMI event commands. Connected sources identify a related issue described as a buffer over‑read in the WLAN Host component, with CVSS foundations indicating Local access, Low attack complexity,...
PT-2024-14766
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a possible out-of-bound write in the ath12k wmi ext hal reg caps function. The reg cap.phy id is extracted from a WMI event and could be an unexpected value in ca...
CVE-2023-21656
Memory corruption in WLAN HOST while receiving an WMI event from firmware...
CVE-2023-21656
CVE-2023-21656 is a memory corruption issue in the WLAN HOST when receiving a WMI event from firmware, affecting Qualcomm chipsets (WLAN component). The primary sources list the vulnerability and its high impact (CVSS 3.1: AV=L/AC=L/PR=L/UI:N/S:U/C:H/I:H/A:H) but do not provide concrete product v...