vulnerability
CentOS Linux: CVE-2021-0326: Moderate: wpa_supplicant security, bug fix, and enhancement update (CESA-2021:1686)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:A/AC:M/Au:N/C:C/I:C/A:C) | Feb 10, 2021 | Jun 1, 2021 | May 25, 2023 |
Severity
8
CVSS
(AV:A/AC:M/Au:N/C:C/I:C/A:C)
Published
Feb 10, 2021
Added
Jun 1, 2021
Modified
May 25, 2023
Description
In p2p_copy_client_info of p2p.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution if the target device is performing a Wi-Fi Direct search, with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-8.1 Android-9Android ID: A-172937525
Solutions
centos-upgrade-wpa_supplicantcentos-upgrade-wpa_supplicant-debuginfocentos-upgrade-wpa_supplicant-debugsource
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.