CVSS: 3.1EPSS: 0%CPEs: 338EXPL: 1CVE-2020-24587 – kernel: Reassembling fragments encrypted under different keys
https://notcve.org/view.php?id=CVE-2020-24587
11 May 2021 — The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed. El estándar 802.11 que sustenta a Wi-Fi Protected Access (WPA, WPA2, y WPA3) y Wired Equivalent Privacy (WEP) no requiere que todos los fragmentos d... • http://www.openwall.com/lists/oss-security/2021/05/11/12 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm CWE-345: Insufficient Verification of Data Authenticity •
CVSS: 4.3EPSS: 0%CPEs: 385EXPL: 1CVE-2020-24588 – kernel: wifi frame payload being parsed incorrectly as an L2 frame
https://notcve.org/view.php?id=CVE-2020-24588
11 May 2021 — The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets. El estándar 802.11 que sustenta a Wi-Fi Protected Access (WPA, WPA2, y WPA3) y Wired Equivalent Privacy (WEP) no requiere que el flag A-MSDU ... • http://www.openwall.com/lists/oss-security/2021/05/11/12 • CWE-20: Improper Input Validation CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 6.5EPSS: 0%CPEs: 22EXPL: 0CVE-2020-12322
https://notcve.org/view.php?id=CVE-2020-12322
12 Nov 2020 — Improper input validation in some Intel(R) Wireless Bluetooth(R) products before version 21.110 may allow an unauthenticated user to potentially enable denial of service via adjacent access. Una comprobación inapropiada de la entrada en algunos productos Intel® Wireless Bluetooth® anterior a versión 21.110, puede habilitar a un usuario no autenticado para permitir potencialmente una denegación de servicio por medio de un acceso adyacente • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00403 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 22EXPL: 0CVE-2020-12321 – hardware: buffer overflow in bluetooth firmware
https://notcve.org/view.php?id=CVE-2020-12321
12 Nov 2020 — Improper buffer restriction in some Intel(R) Wireless Bluetooth(R) products before version 21.110 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access. Una restricción de búfer inapropiada en algunos productos Intel® Wireless Bluetooth® anterior a versión 21.110, puede habilitar a un usuario no autenticado para permitir potencialmente una escalada de privilegios por medio de un acceso adyacente A flaw was found in the firmware of some Intel Bluetooth devices. T... • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00403 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.8EPSS: 0%CPEs: 26EXPL: 0CVE-2019-11152
https://notcve.org/view.php?id=CVE-2019-11152
14 Nov 2019 — Memory corruption issues in Intel(R) WIFI Drivers before version 21.40 may allow a privileged user to potentially enable escalation of privilege, denial of service, and information disclosure via adjacent access. Unos problemas de corrupción de memoria en Intel® WIFI Drivers versiones anteriores a la versión 21.40, pueden habilitar a un usuario privilegiado para permitir una escalada de privilegios, una denegación de servicio y una divulgación de información por medio de un acceso adyacente. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00287.html • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2019-11151
https://notcve.org/view.php?id=CVE-2019-11151
14 Nov 2019 — Memory corruption issues in Intel(R) WIFI Drivers before version 21.40 may allow a privileged user to potentially enable escalation of privilege, denial of service, and information disclosure via local access. Unos problemas de corrupción de memoria en Intel® WIFI Drivers versiones anteriores a la versión 21.40, pueden habilitar a un usuario privilegiado para permitir una escalada de privilegios, una denegación de servicio y una divulgación de información por medio de un acceso local. • https://support.f5.com/csp/article/K89105210?utm_source=f5support&%3Butm_medium=RSS • CWE-787: Out-of-bounds Write •
CVSS: 7.4EPSS: 0%CPEs: 41EXPL: 0CVE-2017-5729
https://notcve.org/view.php?id=CVE-2017-5729
21 Nov 2017 — Frame replay vulnerability in Wi-Fi subsystem in Intel Dual-Band and Tri-Band Wireless-AC Products allows remote attacker to replay frames via channel-based man-in-the-middle. Vulnerabilidad de reproducción de tramas en el subsistema Wi-Fi en productos Intel Dual-Band y Tri-Band Wireless-AC permite que un atacante remoto reproduzca tramas mediante un ataque Man-in-the-Middle (MitM) basado en canales. • https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00093&languageid=en-fr •