CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 2CVE-2022-23303 – Gentoo Linux Security Advisory 202309-16
https://notcve.org/view.php?id=CVE-2022-23303
17 Jan 2022 — The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494. Las implementaciones de SAE en hostapd versiones anteriores a 2.10 y wpa_supplicant versiones anteriores a 2.10, son vulnerables a ataques de canal lateral como resultado de los patrones de acceso a la caché. NOTA: este problema se presenta debido a una corrección incompleta de CVE... • https://github.com/skulkarni-mv/hostapd_mirror • CWE-203: Observable Discrepancy •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-23304 – Gentoo Linux Security Advisory 202309-16
https://notcve.org/view.php?id=CVE-2022-23304
17 Jan 2022 — The implementations of EAP-pwd in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9495. Las implementaciones de EAP-pwd en hostapd versiones anteriores a 2.10 y wpa_supplicant versiones anteriores a 2.10, son vulnerables a ataques de canal lateral como resultado de los patrones de acceso a la caché. NOTA: este problema se presenta debido a una corrección incomplet... • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPDHU5MV464CZBPX7N2SNMUYP6DFIBZL • CWE-203: Observable Discrepancy •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2021-30004 – Gentoo Linux Security Advisory 202309-16
https://notcve.org/view.php?id=CVE-2021-30004
02 Apr 2021 — In wpa_supplicant and hostapd 2.9, forging attacks may occur because AlgorithmIdentifier parameters are mishandled in tls/pkcs1.c and tls/x509v3.c. En wpa_supplicant y hostapd versión 2.9, los ataques de falsificación pueden ocurrir porque los parámetros AlgorithmIdentifier son manejados inapropiadamente en los archivos tls/pkcs1.c y tls/x509v3.c. Multiple vulnerabilities have been discovered in wpa_supplicant and hostapd, the worst of which could result in arbitrary code execution. Versions greater than or... • https://security.gentoo.org/glsa/202309-16 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 4%CPEs: 220EXPL: 3CVE-2020-12695 – hostapd: UPnP SUBSCRIBE misbehavior in WPS AP
https://notcve.org/view.php?id=CVE-2020-12695
08 Jun 2020 — The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. La especificación UPnP de Open Connectivity Foundation antes del 17-04-2020 no prohíbe la aceptación de una petición de suscripción con una URL de entrega en un segmento de red diferente a la URL de suscripción de evento totalmente calificada, también se co... • https://packetstorm.news/files/id/158051 • CWE-276: Incorrect Default Permissions CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 7.5EPSS: 3%CPEs: 3EXPL: 3CVE-2019-10064 – Hostapd Insufficient Entropy
https://notcve.org/view.php?id=CVE-2019-10064
28 Feb 2020 — hostapd before 2.6, in EAP mode, makes calls to the rand() and random() standard library functions without any preceding srand() or srandom() call, which results in inappropriate use of deterministic values. This was fixed in conjunction with CVE-2016-10743. hostapd versiones anteriores a 2.6, en el modo EAP, hace llamadas hacia las funciones de biblioteca estándar rand() y random() sin ninguna llamada srand() o srandom() precedente, lo que resulta en un uso inapropiado de valores determinísticos. Esto fue ... • http://packetstormsecurity.com/files/156573/Hostapd-Insufficient-Entropy.html • CWE-331: Insufficient Entropy •
CVSS: 7.4EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5062
https://notcve.org/view.php?id=CVE-2019-5062
12 Dec 2019 — An exploitable denial-of-service vulnerability exists in the 802.11w security state handling for hostapd 2.6 connected clients with valid 802.11w sessions. By simulating an incomplete new association, an attacker can trigger a deauthentication against stations using 802.11w, resulting in a denial of service. Se presenta una vulnerabilidad de denegación de servicio explotable en el manejo del estado de seguridad 802.11w para clientes conectados a hostapd versión 2.6 con sesiones válidas de 802.11w. Simulando... • https://talosintelligence.com/vulnerability_reports/TALOS-2019-0850 • CWE-346: Origin Validation Error CWE-440: Expected Behavior Violation •
CVSS: 7.4EPSS: 0%CPEs: 1EXPL: 0CVE-2019-5061
https://notcve.org/view.php?id=CVE-2019-5061
12 Dec 2019 — An exploitable denial-of-service vulnerability exists in the hostapd 2.6, where an attacker could trigger AP to send IAPP location updates for stations, before the required authentication process has completed. This could lead to different denial of service scenarios, either by causing CAM table attacks, or by leading to traffic flapping if faking already existing clients in other nearby Aps of the same wireless infrastructure. An attacker can forge Authentication and Association Request packets to trigger ... • https://talosintelligence.com/vulnerability_reports/TALOS-2019-0849 • CWE-287: Improper Authentication CWE-440: Expected Behavior Violation •
CVSS: 6.5EPSS: 0%CPEs: 9EXPL: 0CVE-2019-16275 – Ubuntu Security Notice USN-4136-1
https://notcve.org/view.php?id=CVE-2019-16275
12 Sep 2019 — hostapd before 2.10 and wpa_supplicant before 2.10 allow an incorrect indication of disconnection in certain situations because source address validation is mishandled. This is a denial of service that should have been prevented by PMF (aka management frame protection). The attacker must send a crafted 802.11 frame from a location that is within the 802.11 communications range. hostapd versiones anteriores a 2.10 y wpa_supplicant versiones anteriores a 2.10, permiten una indicación incorrecta de desconexión... • http://www.openwall.com/lists/oss-security/2019/09/12/6 • CWE-346: Origin Validation Error •
CVSS: 5.9EPSS: 1%CPEs: 5EXPL: 0CVE-2019-13377 – Ubuntu Security Notice USN-4098-1
https://notcve.org/view.php?id=CVE-2019-13377
15 Aug 2019 — The implementations of SAE and EAP-pwd in hostapd and wpa_supplicant 2.x through 2.8 are vulnerable to side-channel attacks as a result of observable timing differences and cache access patterns when Brainpool curves are used. An attacker may be able to gain leaked information from a side-channel attack that can be used for full password recovery. Las implementaciones de SAE y EAP-pwd en hostapd y wpa_supplicant versiones 2.x hasta la 2.8, son vulnerables a ataques de canal lateral como un resultado de dife... • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IELLEPIXWQOJFW4SZMU3WQHO63JFAHA4 • CWE-203: Observable Discrepancy •
CVSS: 5.9EPSS: 9%CPEs: 2EXPL: 0CVE-2019-11555 – Ubuntu Security Notice USN-3969-2
https://notcve.org/view.php?id=CVE-2019-11555
26 Apr 2019 — The EAP-pwd implementation in hostapd (EAP server) before 2.8 and wpa_supplicant (EAP peer) before 2.8 does not validate fragmentation reassembly state properly for a case where an unexpected fragment could be received. This could result in process termination due to a NULL pointer dereference (denial of service). This affects eap_server/eap_server_pwd.c and eap_peer/eap_pwd.c. La implementación de EAP-pwd en hostapd (servidor EAP),versiones anteriores a 2.8, y wpa_supplicant (peer EAP), versiones anteriore... • http://www.openwall.com/lists/oss-security/2019/04/26/1 • CWE-476: NULL Pointer Dereference •