16 matches found
EUVD-2021-24388
Malware in sbrugna...
EUVD-2021-27472
Malicious code in bioql PyPI...
Updated hostapd & wpa_supplicant packages fix security vulnerability
The IEEE 802.11 standard sometimes enables an adversary to trick a victim into connecting to an unintended or untrusted network with Home WEP, Home WPA3 SAE-loop. Enterprise 802.1X/EAP, Mesh AMPE, or FILS, aka an "SSID Confusion" issue. This occurs because the SSID is not always used to derive th...
CVE-2023-52424
CVE-2023-52424 describes an SSID confusion vulnerability in IEEE 802.11 where the SSID is not always used to derive PMK/session keys and the 4‑way handshake may proceed without a protected SSID exchange. An adjacent attacker can lure victims to connect to an unintended/untrusted network using Hom...
CVE-2021-40288
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in TP-Link AX10v1 before V1211014, allows a remote unauthenticated attacker to disconnect an already connected wireless client via sending with a wireless adapter specific spoofed authentication frames...
Authentication flaw
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in TP-Link AX10v1 before V1211014, allows a remote unauthenticated attacker to disconnect an already connected wireless client via sending with a wireless adapter specific spoofed authentication frames...
CVE-2021-40288
CVE-2021-40288 affects TP-Link AX10v1 prior to V1_211014. An unauthenticated remote attacker can cause a denial of service by sending spoofed authentication frames targeting the WPA2/WPA3-SAE authentication process, disconnecting an already connected wireless client. Connected documents specify t...
CVE-2021-40288
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in TP-Link AX10v1 before V1211014, allows a remote unauthenticated attacker to disconnect an already connected wireless client via sending with a wireless adapter specific spoofed authentication frames...
CVE-2021-37910
ASUS routers Wi-Fi protected access protocol WPA2 and WPA3-SAE has improper control of Interaction frequency vulnerability, an unauthenticated attacker can remotely disconnect other users' connections by sending specially crafted SAE authentication frames...
Design/Logic Flaw
ASUS routers Wi-Fi protected access protocol WPA2 and WPA3-SAE has improper control of Interaction frequency vulnerability, an unauthenticated attacker can remotely disconnect other users' connections by sending specially crafted SAE authentication frames...
CVE-2021-37910
CVE-2021-37910 affects ASUS routers (WPA2/WPA3-SAE) and describes an improper control of interaction frequency that allows an unauthenticated attacker to remotely disconnect other users by sending crafted SAE authentication frames. Publicly documented impact is a DoS-like disruption to client con...
CVE-2021-37910 ASUS GT-AXE11000, RT-AX3000, RT-AX55, RT-AX58U, TUF-AX3000 - Improper Authentication
ASUS routers Wi-Fi protected access protocol WPA2 and WPA3-SAE has improper control of Interaction frequency vulnerability, an unauthenticated attacker can remotely disconnect other users' connections by sending specially crafted SAE authentication frames...
CVE-2021-41753
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in D-Link DIR-X1560, v1.04B04, and DIR-X6060, v1.11B04 allows a remote unauthenticated attacker to disconnect a wireless client via sending specific spoofed SAE authentication frames...
Authentication flaw
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in D-Link DIR-X1560, v1.04B04, and DIR-X6060, v1.11B04 allows a remote unauthenticated attacker to disconnect a wireless client via sending specific spoofed SAE authentication frames...
CVE-2021-41753
The CVE-2021-41753 entry concerns D-Link DIR-X1560 (v1.04B04) and DIR-X6060 (v1.11B04) where a remote, unauthenticated attacker can cause a denial of service by sending specific spoofed SAE authentication frames to trigger disconnection of a wireless client. Connected sources corroborate the affe...
CVE-2021-41753
A denial-of-service attack in WPA2, and WPA3-SAE authentication methods in D-Link DIR-X1560, v1.04B04, and DIR-X6060, v1.11B04 allows a remote unauthenticated attacker to disconnect a wireless client via sending specific spoofed SAE authentication frames...