Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wi-fi vulnerabilities and exploits
(subscribe to this query)
7
CVSSv3
CVE-2017-0569
An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as High because it first requires compromising a privileged process. Product: Android. V...
Linux Linux Kernel 3.18
Linux Linux Kernel 3.10
1 EDB exploit
9.8
CVSSv3
CVE-2016-0801
The Broadcom Wi-Fi driver in the kernel in Android 4.x prior to 4.4.4, 5.x prior to 5.1.1 LMY49G, and 6.x prior to 2016-02-01 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via crafted wireless control message packets, aka...
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
Google Android 6.0.1
Google Android 5.0
Google Android 4.4.4
Google Android 6.0
Google Android 5.1.1
1 EDB exploit
2 Github repositories
9.8
CVSSv3
CVE-2017-11435
The Humax Wi-Fi Router model HG100R-* 2.0.6 is prone to an authentication bypass vulnerability via specially crafted requests to the management console. The bug is exploitable remotely when the router is configured to expose the management console. The router is not validating th...
Humaxdigital Hg100r Firmware 2.0.6
1 EDB exploit
6.5
CVSSv3
CVE-2017-14953
HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximate malicious users to trigger association with an arbitrary access point by leveraging a default SSID with no WiFi encryption or authentication. NOTE: Vendor states that this is not a vulnerab...
Hikvision Ds-2cd2432f-iw Firmware
NA
CVE-2015-0932
The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate 3.02 E, InnGate 3.10 E, InnGate 3.01 G, and InnGate 3.10 G devices does not require authentication for rsync sessions, which allows remote malicious users to read or write to arbitrary files...
Antlabs Inngate Ig 3.02 E
Antlabs Inngate Ig 3.10 E
Antlabs Inngate Ig 3.10 G
Antlabs Inngate Ig 3101
Antlabs Inngate Ig 3.01 E
Antlabs Inngate Ig 3100
Antlabs Inngate Ig 3.00 E
1 Article
6.8
CVSSv3
CVE-2017-13084
Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.
Freebsd Freebsd 11
Freebsd Freebsd 11.1
Redhat Enterprise Linux Desktop 7
Freebsd Freebsd
Canonical Ubuntu Linux 17.04
Canonical Ubuntu Linux 16.04
Freebsd Freebsd 10
Freebsd Freebsd 10.4
Opensuse Leap 42.3
Opensuse Leap 42.2
Debian Debian Linux 9.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
Redhat Enterprise Linux Server 7
W1.fi Hostapd 2.3
W1.fi Hostapd 2.2
W1.fi Hostapd 0.6.9
W1.fi Hostapd 0.6.8
W1.fi Hostapd 0.4.10
W1.fi Hostapd 0.4.9
W1.fi Hostapd 0.4.8
W1.fi Hostapd 0.2.6
1 Article
3.1
CVSSv3
CVE-2019-15126
An issue exists on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors (related to state transitions) in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the a...
Apple Ipados
Apple Iphone Os
Apple Mac Os X
Broadcom Bcm4389 Firmware -
Broadcom Bcm43012 Firmware -
Broadcom Bcm43013 Firmware -
Broadcom Bcm4375 Firmware -
Broadcom Bcm43752 Firmware -
Broadcom Bcm4356 Firmware -
1 EDB exploit
5 Github repositories
2 Articles
NA
CVE-2015-1118
libnetcore in Apple iOS prior to 8.3, Apple OS X prior to 10.10.3, and Apple TV prior to 7.2 allows malicious users to cause a denial of service (memory corruption and application crash) via a crafted configuration profile.
Apple Tvos
Apple Mac Os X
Apple Iphone Os
1 Article
7.8
CVSSv3
CVE-2017-8501
Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8502.
Microsoft Office Online Server 2016
Microsoft Sharepoint Server 2013
Microsoft Office 2011
Microsoft Office Compatibility Pack -
Microsoft Office 2016
Microsoft Sharepoint Server 2010
Microsoft Excel Viewer 2007
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Excel 2007
Microsoft Excel 2010
1 Article
7.8
CVSSv3
CVE-2017-8502
Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8501.
Microsoft Excel 2013
Microsoft Excel 2016
Microsoft Excel 2010
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »