CVE-2015-1863
published 2015-04-28CVE-2015-1863: Heap-based buffer overflow in wpa_supplicant 1.0 through 2.4 allows remote attackers to cause a denial of service (crash), read memory, or possibly execute…
medium5.8CVSS 3.1
AVAACLAuNCPIPAP
Heap-based buffer overflow in wpa_supplicant 1.0 through 2.4 allows remote attackers to cause a denial of service (crash), read memory, or possibly execute arbitrary code via crafted SSID information in a management frame when creating or updating P2P entries.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | wpa | < wpa 2.3-2 (bookworm) | wpa 2.3-2 (bookworm) |
| android | — | — | |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_hpc_node | — | — |
| redhat | enterprise_linux_hpc_node_eus | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_server_eus | — | — |
| redhat | enterprise_linux_workstation | — | — |
| w1.fi | wpa_supplicant | — | — |
| w1.fi | wpa_supplicant | — | — |
| w1.fi | wpa_supplicant | — | — |
| w1.fi | wpa_supplicant | — | — |
| w1.fi | wpa_supplicant | — | — |
| w1.fi | wpa_supplicant | — | — |
| w1.fi | wpa_supplicant | — | — |
| w1.fi | wpa_supplicant | >= 0 < 2.3-2 | 2.3-2 |
| w1.fi | wpa_supplicant | >= 0 < 2.3-2 | 2.3-2 |
| w1.fi | wpa_supplicant | >= 0 < 2.3-2 | 2.3-2 |
CVSS provenance
nvd5.8MEDIUMAV:A/AC:L/Au:N/C:P/I:P/A:P
osv5.8MEDIUM