W1.Fi

Wpa Supplicant

39 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2015-8041

  • EPSS 1.5%
  • Published 09.11.2015 16:59:10
  • Last modified 12.04.2025 10:46:40

Multiple integer overflows in the NDEF record parser in hostapd before 2.5 and wpa_supplicant before 2.5 allow remote attackers to cause a denial of service (process crash or infinite loop) via a large payload length field value in an (1) WPS or (2) ...

5

CVE-2015-4146

  • EPSS 1.31%
  • Published 15.06.2015 15:59:10
  • Last modified 12.04.2025 10:46:40

The EAP-pwd peer implementation in hostapd and wpa_supplicant 1.0 through 2.4 does not clear the L (Length) and M (More) flags before determining if a response should be fragmented, which allows remote attackers to cause a denial of service (crash) v...

5

CVE-2015-4145

  • EPSS 1.21%
  • Published 15.06.2015 15:59:09
  • Last modified 12.04.2025 10:46:40

The EAP-pwd server and peer implementation in hostapd and wpa_supplicant 1.0 through 2.4 does not validate a fragment is already being processed, which allows remote attackers to cause a denial of service (memory leak) via a crafted message.

5

CVE-2015-4144

  • EPSS 1.21%
  • Published 15.06.2015 15:59:08
  • Last modified 12.04.2025 10:46:40

The EAP-pwd server and peer implementation in hostapd and wpa_supplicant 1.0 through 2.4 does not validate that a message is long enough to contain the Total-Length field, which allows remote attackers to cause a denial of service (crash) via a craft...

5

CVE-2015-4143

  • EPSS 1.21%
  • Published 15.06.2015 15:59:07
  • Last modified 12.04.2025 10:46:40

The EAP-pwd server and peer implementation in hostapd and wpa_supplicant 1.0 through 2.4 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) Commit or (2) Confirm message payload.

4.3

CVE-2015-4142

  • EPSS 7.07%
  • Published 15.06.2015 15:59:06
  • Last modified 12.04.2025 10:46:40

Integer underflow in the WMM Action frame parser in hostapd 0.5.5 through 2.4 and wpa_supplicant 0.7.0 through 2.4, when used for AP mode MLME/SME functionality, allows remote attackers to cause a denial of service (crash) via a crafted frame, which ...

4.3

CVE-2015-4141

  • EPSS 1.47%
  • Published 15.06.2015 15:59:05
  • Last modified 12.04.2025 10:46:40

The WPS UPnP function in hostapd, when using WPS AP, and wpa_supplicant, when using WPS external registrar (ER), 0.7.0 through 2.4 allows remote attackers to cause a denial of service (crash) via a negative chunk length, which triggers an out-of-boun...

5.8

CVE-2015-1863

  • EPSS 5.38%
  • Published 28.04.2015 14:59:01
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in wpa_supplicant 1.0 through 2.4 allows remote attackers to cause a denial of service (crash), read memory, or possibly execute arbitrary code via crafted SSID information in a management frame when creating or updating P2...

6.8

CVE-2014-3686

  • EPSS 4.67%
  • Published 16.10.2014 00:55:05
  • Last modified 12.04.2025 10:46:40

wpa_supplicant and hostapd 0.7.2 through 2.2, when running with certain configurations and using wpa_cli or hostapd_cli with action scripts, allows remote attackers to execute arbitrary commands via a crafted frame.