VYPR

Wpa Supplicant

by Wpa Supplicant

CVEs (11)

  • CVE-2016-4476HigMay 9, 2016
    risk 0.49cvss 7.5epss 0.03

    hostapd 0.6.7 through 2.5 and wpa_supplicant 0.6.7 through 2.5 do not reject \n and \r characters in passphrase parameters, which allows remote attackers to cause a denial of service (daemon outage) via a crafted WPS operation.

  • CVE-2015-5316MedFeb 21, 2018
    risk 0.39cvss 5.9epss 0.03

    The eap_pwd_perform_confirm_exchange function in eap_peer/eap_pwd.c in wpa_supplicant 2.x before 2.6, when EAP-pwd is enabled in a network configuration profile, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an EAP-pwd…

  • CVE-2015-5315MedFeb 21, 2018
    risk 0.39cvss 5.9epss 0.03

    The eap_pwd_process function in eap_peer/eap_pwd.c in wpa_supplicant 2.x before 2.6 does not validate that the reassembly buffer is large enough for the final fragment when EAP-pwd is enabled in a network configuration profile, which allows remote attackers to cause a denial of…

  • CVE-2015-0210MedAug 28, 2017
    risk 0.38cvss 5.9epss 0.01

    wpa_supplicant 2.0-16 does not properly check certificate subject name, which allows remote attackers to cause a man-in-the-middle attack.

  • CVE-2019-9497Apr 17, 2019
    risk 0.01cvss epss 0.05

    The implementations of EAP-PWD in hostapd EAP Server and wpa_supplicant EAP Peer do not validate the scalar and element values in EAP-pwd-Commit. This vulnerability may allow an attacker to complete EAP-PWD authentication without knowing the password. However, unless the crypto…

  • CVE-2023-52160Feb 22, 2024
    risk 0.00cvss epss 0.01

    The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during Phase 1 authentication, and an eap_peap_decrypt vulnerability can then be abused…

  • CVE-2022-23304Jan 17, 2022
    risk 0.00cvss epss 0.02

    The implementations of EAP-pwd in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495.

  • CVE-2015-4145Jun 15, 2015
    risk 0.00cvss epss 0.03

    The EAP-pwd server and peer implementation in hostapd and wpa_supplicant 1.0 through 2.4 does not validate a fragment is already being processed, which allows remote attackers to cause a denial of service (memory leak) via a crafted message.

  • CVE-2014-3686Oct 16, 2014
    risk 0.00cvss epss 0.05

    wpa_supplicant and hostapd 0.7.2 through 2.2, when running with certain configurations and using wpa_cli or hostapd_cli with action scripts, allows remote attackers to execute arbitrary commands via a crafted frame.

  • CVE-2007-6025Nov 19, 2007
    risk 0.00cvss epss 0.02

    Stack-based buffer overflow in driver_wext.c in wpa_supplicant 0.6.0 and earlier allows remote attackers to cause a denial of service (crash) via crafted TSF data.

  • CVE-2005-0470Mar 14, 2005
    risk 0.00cvss epss 0.03

    Buffer overflow in wpa_supplicant before 0.2.7 allows remote attackers to cause a denial of service (segmentation fault) via invalid EAPOL-Key packet data.

VYPR — Vulnerability Intelligence