Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wi-fi vulnerabilities and exploits
(subscribe to this query)
7.6
CVSSv2
CVE-2017-0569
An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. V...
Linux Linux Kernel 3.18
Linux Linux Kernel 3.10
1 EDB exploit
8.3
CVSSv2
CVE-2016-0801
The Broadcom Wi-Fi driver in the kernel in Android 4.x prior to 4.4.4, 5.x prior to 5.1.1 LMY49G, and 6.x prior to 2016-02-01 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via crafted wireless control message packets, aka...
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
Google Android 6.0.1
Google Android 5.0
Google Android 4.4.4
Google Android 6.0
Google Android 5.1.1
1 EDB exploit
2 Github repositories
7.5
CVSSv2
CVE-2017-11435
The Humax Wi-Fi Router model HG100R-* 2.0.6 is prone to an authentication bypass vulnerability via specially crafted requests to the management console. The bug is exploitable remotely when the router is configured to expose the management console. The router is not validating th...
Humaxdigital Hg100r Firmware 2.0.6
1 EDB exploit
3.3
CVSSv2
CVE-2017-14953
HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate malicious users to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption or authentication. NOTE: Vendor states that this is not a vulnerab...
Hikvision Ds-2cd2432f-iw Firmware
10
CVSSv2
CVE-2015-0932
The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate 3.02 E, InnGate 3.10 E, InnGate 3.01 G, and InnGate 3.10 G devices does not require authentication for rsync sessions, which allows remote malicious users to read or write to arbitrary files...
Antlabs Inngate Ig 3.02 E
Antlabs Inngate Ig 3.10 E
Antlabs Inngate Ig 3.10 G
Antlabs Inngate Ig 3101
Antlabs Inngate Ig 3.01 E
Antlabs Inngate Ig 3100
Antlabs Inngate Ig 3.00 E
1 Article
5.4
CVSSv2
CVE-2017-13084
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
Freebsd Freebsd 11
Freebsd Freebsd 11.1
Redhat Enterprise Linux Desktop 7
Freebsd Freebsd
Canonical Ubuntu Linux 17.04
Canonical Ubuntu Linux 16.04
Freebsd Freebsd 10
Freebsd Freebsd 10.4
Opensuse Leap 42.3
Opensuse Leap 42.2
Debian Debian Linux 9.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
Redhat Enterprise Linux Server 7
W1.fi Hostapd 2.3
W1.fi Hostapd 2.2
W1.fi Hostapd 0.6.9
W1.fi Hostapd 0.6.8
W1.fi Hostapd 0.4.10
W1.fi Hostapd 0.4.9
W1.fi Hostapd 0.4.8
W1.fi Hostapd 0.2.6
1 Article
2.9
CVSSv2
CVE-2019-15126
An issue exists on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors (related to state transitions) in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the a...
Apple Ipados
Apple Iphone Os
Apple Mac Os X
Broadcom Bcm4389 Firmware -
Broadcom Bcm43012 Firmware -
Broadcom Bcm43013 Firmware -
Broadcom Bcm4375 Firmware -
Broadcom Bcm43752 Firmware -
Broadcom Bcm4356 Firmware -
1 EDB exploit
5 Github repositories
2 Articles
5
CVSSv2
CVE-2015-1118
libnetcore in Apple iOS prior to 8.3, Apple OS X prior to 10.10.3, and Apple TV prior to 7.2 allows malicious users to cause a denial of service (memory corruption and application crash) via a crafted configuration profile.
Apple Tvos
Apple Mac Os X
Apple Iphone Os
1 Article
9.3
CVSSv2
CVE-2017-8463
Windows Shell in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a remote code execution vulnerability due to the way it improperly handles executabl...
Microsoft Windows 10 1511
Microsoft Windows Server 2016
Microsoft Windows 10 1703
Microsoft Windows Server 2008
Microsoft Windows 8.1
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows 7
Microsoft Windows Rt 8.1
Microsoft Windows 10 1607
Microsoft Windows Server 2008 R2
Microsoft Windows 10 -
1 Article
9.3
CVSSv2
CVE-2017-8501
Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8502.
Microsoft Office Online Server 2016
Microsoft Sharepoint Server 2013
Microsoft Office 2011
Microsoft Office Compatibility Pack -
Microsoft Office 2016
Microsoft Sharepoint Server 2010
Microsoft Excel Viewer 2007
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Excel 2007
Microsoft Excel 2010
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »