rpm package
opensuse/wpa_supplicant&distro=openSUSE Leap Micro 5.3
pkg:rpm/opensuse/wpa_supplicant&distro=openSUSE%20Leap%20Micro%205.3
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-52160 | — | < 2.9-150000.4.39.1 | 2.9-150000.4.39.1 | Feb 22, 2024 | The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused t |
- CVE-2023-52160Feb 22, 2024affected < 2.9-150000.4.39.1fixed 2.9-150000.4.39.1
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused t