[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2019-9496":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":801,"aliases":802,"duplicate_of":9,"upstream":803,"downstream":804,"duplicates":813,"related":814,"reserved_at":9,"published_at":817,"modified_at":818,"state":819,"summary":820,"references_raw":829,"kevs":876,"epss":877,"epss_history":880,"metrics":1125,"affected":1135},"CVE-2019-9496","An invalid authentication sequence could result in the hostapd process terminating due to missing state validation steps when processing the SAE confirm message when in hostapd/AP mode. All version of hostapd with SAE support are vulnerable. An attacker may force the hostapd process to terminate, performing a denial of service attack. Both hostapd with SAE support and wpa_supplicant with SAE support prior to and including version 2.7 are affected.",null,[11,660],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-287","Improper Authentication","When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.","weakness","Draft","Class","High",[20,182,261,265,269,273,292,481,543,627],{"id":21,"name":22,"techniques":23},"CAPEC-114","Authentication Abuse",[24],{"id":25,"name":26,"tactics":27,"countermeasures":34},"T1548","Abuse Elevation Control Mechanism",[28,31],{"id":29,"name":30},"TA0030","Defense Evasion",{"id":32,"name":33},"TA0111","Privilege Escalation",[35,40,44,48,52,57,61,65,69,73,77,81,85,89,94,98,103,108,112,116,120,125,129,133,137,141,146,150,154,158,162,166,170,174,178],{"id":36,"name":37,"tactic":38},"D3-CI","Configuration Inventory",{"name":39},"Model",{"id":41,"name":42,"tactic":43},"D3-AM","Access Modeling",{"name":39},{"id":45,"name":46,"tactic":47},"D3-DI","Data Inventory",{"name":39},{"id":49,"name":50,"tactic":51},"D3-NTPM","Network Traffic Policy Mapping",{"name":39},{"id":53,"name":54,"tactic":55},"D3-AEM","Application Exception Monitoring",{"name":56},"Detect",{"id":58,"name":59,"tactic":60},"D3-SCA","System Call Analysis",{"name":56},{"id":62,"name":63,"tactic":64},"D3-SFA","System File Analysis",{"name":56},{"id":66,"name":67,"tactic":68},"D3-FA","File Analysis",{"name":56},{"id":70,"name":71,"tactic":72},"D3-FIM","File Integrity Monitoring",{"name":56},{"id":74,"name":75,"tactic":76},"D3-OPM","Operational Process Monitoring",{"name":56},{"id":78,"name":79,"tactic":80},"D3-DA","Dynamic Analysis",{"name":56},{"id":82,"name":83,"tactic":84},"D3-EFA","Emulated File Analysis",{"name":56},{"id":86,"name":87,"tactic":88},"D3-PSA","Process Spawn Analysis",{"name":56},{"id":90,"name":91,"tactic":92},"D3-FEV","File Eviction",{"name":93},"Evict",{"id":95,"name":96,"tactic":97},"D3-AL","Account Locking",{"name":93},{"id":99,"name":100,"tactic":101},"D3-DF","Decoy File",{"name":102},"Deceive",{"id":104,"name":105,"tactic":106},"D3-FE","File Encryption",{"name":107},"Harden",{"id":109,"name":110,"tactic":111},"D3-AA","Agent Authentication",{"name":107},{"id":113,"name":114,"tactic":115},"D3-CDP","Change Default Password",{"name":107},{"id":117,"name":118,"tactic":119},"D3-SCP","System Configuration Permissions",{"name":107},{"id":121,"name":122,"tactic":123},"D3-RC","Restore Configuration",{"name":124},"Restore",{"id":126,"name":127,"tactic":128},"D3-RF","Restore File",{"name":124},{"id":130,"name":131,"tactic":132},"D3-ULA","Unlock Account",{"name":124},{"id":134,"name":135,"tactic":136},"D3-RUAA","Restore User Account Access",{"name":124},{"id":138,"name":139,"tactic":140},"D3-RD","Restore Database",{"name":124},{"id":142,"name":143,"tactic":144},"D3-SCF","System Call Filtering",{"name":145},"Isolate",{"id":147,"name":148,"tactic":149},"D3-CF","Content Filtering",{"name":145},{"id":151,"name":152,"tactic":153},"D3-LFP","Local File Permissions",{"name":145},{"id":155,"name":156,"tactic":157},"D3-RFAM","Remote File Access Mediation",{"name":145},{"id":159,"name":160,"tactic":161},"D3-CQ","Content Quarantine",{"name":145},{"id":163,"name":164,"tactic":165},"D3-CM","Content Modification",{"name":145},{"id":167,"name":168,"tactic":169},"D3-UAP","User Account Permissions",{"name":145},{"id":171,"name":172,"tactic":173},"D3-EAL","Executable Allowlisting",{"name":145},{"id":175,"name":176,"tactic":177},"D3-EDL","Executable Denylisting",{"name":145},{"id":179,"name":180,"tactic":181},"D3-HBPI","Hardware-based Process Isolation",{"name":145},{"id":183,"name":184,"techniques":185},"CAPEC-115","Authentication Bypass",[186],{"id":25,"name":26,"tactics":187,"countermeasures":190},[188,189],{"id":29,"name":30},{"id":32,"name":33},[191,193,195,197,199,201,203,205,207,209,211,213,215,217,219,221,223,225,227,229,231,233,235,237,239,241,243,245,247,249,251,253,255,257,259],{"id":36,"name":37,"tactic":192},{"name":39},{"id":41,"name":42,"tactic":194},{"name":39},{"id":45,"name":46,"tactic":196},{"name":39},{"id":49,"name":50,"tactic":198},{"name":39},{"id":53,"name":54,"tactic":200},{"name":56},{"id":58,"name":59,"tactic":202},{"name":56},{"id":62,"name":63,"tactic":204},{"name":56},{"id":66,"name":67,"tactic":206},{"name":56},{"id":70,"name":71,"tactic":208},{"name":56},{"id":74,"name":75,"tactic":210},{"name":56},{"id":78,"name":79,"tactic":212},{"name":56},{"id":82,"name":83,"tactic":214},{"name":56},{"id":86,"name":87,"tactic":216},{"name":56},{"id":90,"name":91,"tactic":218},{"name":93},{"id":95,"name":96,"tactic":220},{"name":93},{"id":99,"name":100,"tactic":222},{"name":102},{"id":104,"name":105,"tactic":224},{"name":107},{"id":109,"name":110,"tactic":226},{"name":107},{"id":113,"name":114,"tactic":228},{"name":107},{"id":117,"name":118,"tactic":230},{"name":107},{"id":121,"name":122,"tactic":232},{"name":124},{"id":126,"name":127,"tactic":234},{"name":124},{"id":130,"name":131,"tactic":236},{"name":124},{"id":134,"name":135,"tactic":238},{"name":124},{"id":138,"name":139,"tactic":240},{"name":124},{"id":142,"name":143,"tactic":242},{"name":145},{"id":147,"name":148,"tactic":244},{"name":145},{"id":151,"name":152,"tactic":246},{"name":145},{"id":155,"name":156,"tactic":248},{"name":145},{"id":159,"name":160,"tactic":250},{"name":145},{"id":163,"name":164,"tactic":252},{"name":145},{"id":167,"name":168,"tactic":254},{"name":145},{"id":171,"name":172,"tactic":256},{"name":145},{"id":175,"name":176,"tactic":258},{"name":145},{"id":179,"name":180,"tactic":260},{"name":145},{"id":262,"name":263,"techniques":264},"CAPEC-151","Identity Spoofing",[],{"id":266,"name":267,"techniques":268},"CAPEC-194","Fake the Source of Data",[],{"id":270,"name":271,"techniques":272},"CAPEC-22","Exploiting Trust in Client",[],{"id":274,"name":275,"techniques":276},"CAPEC-57","Utilizing REST's Trust in the System Resource to Obtain Sensitive Data",[277],{"id":278,"name":279,"tactics":280,"countermeasures":287},"T1040","Network Sniffing",[281,284],{"id":282,"name":283},"TA0031","Credential Access",{"id":285,"name":286},"TA0102","Discovery",[288],{"id":289,"name":290,"tactic":291},"D3-DNSTA","DNS Traffic Analysis",{"name":56},{"id":293,"name":294,"techniques":295},"CAPEC-593","Session Hijacking",[296,340,453],{"id":297,"name":298,"tactics":299,"countermeasures":303},"T1185","Browser Session Hijacking",[300],{"id":301,"name":302},"TA0100","Collection",[304,308,312,316,320,324,328,332,336],{"id":305,"name":306,"tactic":307},"D3-UGLPA","User Geolocation Logon Pattern Analysis",{"name":56},{"id":309,"name":310,"tactic":311},"D3-PMAD","Protocol Metadata Anomaly Detection",{"name":56},{"id":313,"name":314,"tactic":315},"D3-CSPP","Client-server Payload Profiling",{"name":56},{"id":317,"name":318,"tactic":319},"D3-PHDURA","Per Host Download-Upload Ratio Analysis",{"name":56},{"id":321,"name":322,"tactic":323},"D3-NTSA","Network Traffic Signature Analysis",{"name":56},{"id":325,"name":326,"tactic":327},"D3-APCA","Application Protocol Command Analysis",{"name":56},{"id":329,"name":330,"tactic":331},"D3-NTCD","Network Traffic Community Deviation",{"name":56},{"id":333,"name":334,"tactic":335},"D3-RTSD","Remote Terminal Session Detection",{"name":56},{"id":337,"name":338,"tactic":339},"D3-NTF","Network Traffic Filtering",{"name":145},{"id":341,"name":342,"tactics":343,"countermeasures":348},"T1550.001","Application Access Token",[344,345],{"id":29,"name":30},{"id":346,"name":347},"TA0109","Lateral Movement",[349,353,357,359,363,365,367,369,371,373,375,377,379,383,387,391,395,399,403,407,411,415,419,423,427,431,435,437,439,443,447,451],{"id":350,"name":351,"tactic":352},"D3-PLA","Process Lineage Analysis",{"name":56},{"id":354,"name":355,"tactic":356},"D3-PSMD","Process Self-Modification Detection",{"name":56},{"id":86,"name":87,"tactic":358},{"name":56},{"id":360,"name":361,"tactic":362},"D3-CCSA","Credential Compromise Scope Analysis",{"name":56},{"id":305,"name":306,"tactic":364},{"name":56},{"id":309,"name":310,"tactic":366},{"name":56},{"id":313,"name":314,"tactic":368},{"name":56},{"id":317,"name":318,"tactic":370},{"name":56},{"id":321,"name":322,"tactic":372},{"name":56},{"id":325,"name":326,"tactic":374},{"name":56},{"id":329,"name":330,"tactic":376},{"name":56},{"id":333,"name":334,"tactic":378},{"name":56},{"id":380,"name":381,"tactic":382},"D3-PT","Process Termination",{"name":93},{"id":384,"name":385,"tactic":386},"D3-PS","Process Suspension",{"name":93},{"id":388,"name":389,"tactic":390},"D3-HR","Host Reboot",{"name":93},{"id":392,"name":393,"tactic":394},"D3-HS","Host Shutdown",{"name":93},{"id":396,"name":397,"tactic":398},"D3-CR","Credential Revocation",{"name":93},{"id":400,"name":401,"tactic":402},"D3-ANCI","Authentication Cache Invalidation",{"name":93},{"id":404,"name":405,"tactic":406},"D3-DUC","Decoy User Credential",{"name":102},{"id":408,"name":409,"tactic":410},"D3-CH","Credential Hardening",{"name":107},{"id":412,"name":413,"tactic":414},"D3-MFA","Multi-factor Authentication",{"name":107},{"id":416,"name":417,"tactic":418},"D3-CRO","Credential Rotation",{"name":107},{"id":420,"name":421,"tactic":422},"D3-TB","Token Binding",{"name":107},{"id":424,"name":425,"tactic":426},"D3-TBA","Token-based Authentication",{"name":107},{"id":428,"name":429,"tactic":430},"D3-RIC","Reissue Credential",{"name":124},{"id":432,"name":433,"tactic":434},"D3-KBPI","Kernel-based Process Isolation",{"name":145},{"id":142,"name":143,"tactic":436},{"name":145},{"id":179,"name":180,"tactic":438},{"name":145},{"id":440,"name":441,"tactic":442},"D3-ABPI","Application-based Process Isolation",{"name":145},{"id":444,"name":445,"tactic":446},"D3-WSAM","Web Session Access Mediation",{"name":145},{"id":448,"name":449,"tactic":450},"D3-CTS","Credential Transmission Scoping",{"name":145},{"id":337,"name":338,"tactic":452},{"name":145},{"id":454,"name":455,"tactics":456,"countermeasures":458},"T1563","Remote Service Session Hijacking",[457],{"id":346,"name":347},[459,461,463,465,467,469,471,473,475,479],{"id":305,"name":306,"tactic":460},{"name":56},{"id":309,"name":310,"tactic":462},{"name":56},{"id":313,"name":314,"tactic":464},{"name":56},{"id":317,"name":318,"tactic":466},{"name":56},{"id":321,"name":322,"tactic":468},{"name":56},{"id":325,"name":326,"tactic":470},{"name":56},{"id":329,"name":330,"tactic":472},{"name":56},{"id":333,"name":334,"tactic":474},{"name":56},{"id":476,"name":477,"tactic":478},"D3-ST","Session Termination",{"name":93},{"id":337,"name":338,"tactic":480},{"name":145},{"id":482,"name":483,"techniques":484},"CAPEC-633","Token Impersonation",[485],{"id":486,"name":487,"tactics":488,"countermeasures":494},"T1134","Access Token Manipulation",[489,490,493],{"id":29,"name":30},{"id":491,"name":492},"TA0005","Stealth",{"id":32,"name":33},[495,497,499,501,503,505,507,509,511,513,515,517,519,521,523,525,527,529,531,533,535,537,539,541],{"id":36,"name":37,"tactic":496},{"name":39},{"id":49,"name":50,"tactic":498},{"name":39},{"id":41,"name":42,"tactic":500},{"name":39},{"id":53,"name":54,"tactic":502},{"name":56},{"id":58,"name":59,"tactic":504},{"name":56},{"id":360,"name":361,"tactic":506},{"name":56},{"id":74,"name":75,"tactic":508},{"name":56},{"id":86,"name":87,"tactic":510},{"name":56},{"id":476,"name":477,"tactic":512},{"name":93},{"id":396,"name":397,"tactic":514},{"name":93},{"id":400,"name":401,"tactic":516},{"name":93},{"id":404,"name":405,"tactic":518},{"name":102},{"id":408,"name":409,"tactic":520},{"name":107},{"id":412,"name":413,"tactic":522},{"name":107},{"id":416,"name":417,"tactic":524},{"name":107},{"id":420,"name":421,"tactic":526},{"name":107},{"id":424,"name":425,"tactic":528},{"name":107},{"id":121,"name":122,"tactic":530},{"name":124},{"id":428,"name":429,"tactic":532},{"name":124},{"id":142,"name":143,"tactic":534},{"name":145},{"id":448,"name":449,"tactic":536},{"name":145},{"id":171,"name":172,"tactic":538},{"name":145},{"id":175,"name":176,"tactic":540},{"name":145},{"id":179,"name":180,"tactic":542},{"name":145},{"id":544,"name":545,"techniques":546},"CAPEC-650","Upload a Web Shell to a Web Server",[547],{"id":548,"name":549,"tactics":550,"countermeasures":554},"T1505.003","Web Shell",[551],{"id":552,"name":553},"TA0110","Persistence",[555,559,563,567,571,573,575,577,579,581,583,585,587,589,591,593,595,597,599,603,605,607,609,611,613,615,617,619,621,623,625],{"id":556,"name":557,"tactic":558},"D3-NNI","Network Node Inventory",{"name":39},{"id":560,"name":561,"tactic":562},"D3-PLM","Physical Link Mapping",{"name":39},{"id":564,"name":565,"tactic":566},"D3-LLM","Logical Link Mapping",{"name":39},{"id":568,"name":569,"tactic":570},"D3-EHB","Endpoint Health Beacon",{"name":56},{"id":66,"name":67,"tactic":572},{"name":56},{"id":70,"name":71,"tactic":574},{"name":56},{"id":78,"name":79,"tactic":576},{"name":56},{"id":82,"name":83,"tactic":578},{"name":56},{"id":350,"name":351,"tactic":580},{"name":56},{"id":354,"name":355,"tactic":582},{"name":56},{"id":86,"name":87,"tactic":584},{"name":56},{"id":90,"name":91,"tactic":586},{"name":93},{"id":380,"name":381,"tactic":588},{"name":93},{"id":384,"name":385,"tactic":590},{"name":93},{"id":388,"name":389,"tactic":592},{"name":93},{"id":392,"name":393,"tactic":594},{"name":93},{"id":99,"name":100,"tactic":596},{"name":102},{"id":104,"name":105,"tactic":598},{"name":107},{"id":600,"name":601,"tactic":602},"D3-RNA","Restore Network Access",{"name":124},{"id":126,"name":127,"tactic":604},{"name":124},{"id":147,"name":148,"tactic":606},{"name":145},{"id":151,"name":152,"tactic":608},{"name":145},{"id":155,"name":156,"tactic":610},{"name":145},{"id":159,"name":160,"tactic":612},{"name":145},{"id":163,"name":164,"tactic":614},{"name":145},{"id":171,"name":172,"tactic":616},{"name":145},{"id":175,"name":176,"tactic":618},{"name":145},{"id":432,"name":433,"tactic":620},{"name":145},{"id":142,"name":143,"tactic":622},{"name":145},{"id":179,"name":180,"tactic":624},{"name":145},{"id":440,"name":441,"tactic":626},{"name":145},{"id":628,"name":629,"techniques":630},"CAPEC-94","Adversary in the Middle (AiTM)",[631],{"id":632,"name":633,"tactics":634,"countermeasures":637},"T1557","Adversary-in-the-Middle",[635,636],{"id":282,"name":283},{"id":301,"name":302},[638,640,642,644,646,648,650,652,654,658],{"id":305,"name":306,"tactic":639},{"name":56},{"id":309,"name":310,"tactic":641},{"name":56},{"id":313,"name":314,"tactic":643},{"name":56},{"id":317,"name":318,"tactic":645},{"name":56},{"id":321,"name":322,"tactic":647},{"name":56},{"id":325,"name":326,"tactic":649},{"name":56},{"id":329,"name":330,"tactic":651},{"name":56},{"id":333,"name":334,"tactic":653},{"name":56},{"id":655,"name":656,"tactic":657},"D3-CAA","Connection Attempt Analysis",{"name":56},{"id":337,"name":338,"tactic":659},{"name":145},{"_key":661,"id":661,"name":662,"description":663,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":664},"CWE-642","External Control of Critical State Data","The product stores security-critical state information about its users, or the product itself, in a location that is accessible to unauthorized actors.",[665,775],{"id":666,"name":667,"techniques":668},"CAPEC-21","Exploitation of Trusted Identifiers",[669,723,751],{"id":486,"name":487,"tactics":670,"countermeasures":674},[671,672,673],{"id":29,"name":30},{"id":491,"name":492},{"id":32,"name":33},[675,677,679,681,683,685,687,689,691,693,695,697,699,701,703,705,707,709,711,713,715,717,719,721],{"id":36,"name":37,"tactic":676},{"name":39},{"id":49,"name":50,"tactic":678},{"name":39},{"id":41,"name":42,"tactic":680},{"name":39},{"id":53,"name":54,"tactic":682},{"name":56},{"id":58,"name":59,"tactic":684},{"name":56},{"id":360,"name":361,"tactic":686},{"name":56},{"id":74,"name":75,"tactic":688},{"name":56},{"id":86,"name":87,"tactic":690},{"name":56},{"id":476,"name":477,"tactic":692},{"name":93},{"id":396,"name":397,"tactic":694},{"name":93},{"id":400,"name":401,"tactic":696},{"name":93},{"id":404,"name":405,"tactic":698},{"name":102},{"id":408,"name":409,"tactic":700},{"name":107},{"id":412,"name":413,"tactic":702},{"name":107},{"id":416,"name":417,"tactic":704},{"name":107},{"id":420,"name":421,"tactic":706},{"name":107},{"id":424,"name":425,"tactic":708},{"name":107},{"id":121,"name":122,"tactic":710},{"name":124},{"id":428,"name":429,"tactic":712},{"name":124},{"id":142,"name":143,"tactic":714},{"name":145},{"id":448,"name":449,"tactic":716},{"name":145},{"id":171,"name":172,"tactic":718},{"name":145},{"id":175,"name":176,"tactic":720},{"name":145},{"id":179,"name":180,"tactic":722},{"name":145},{"id":724,"name":725,"tactics":726,"countermeasures":728},"T1528","Steal Application Access Token",[727],{"id":282,"name":283},[729,731,733,735,737,739,741,743,745,747,749],{"id":360,"name":361,"tactic":730},{"name":56},{"id":396,"name":397,"tactic":732},{"name":93},{"id":400,"name":401,"tactic":734},{"name":93},{"id":404,"name":405,"tactic":736},{"name":102},{"id":408,"name":409,"tactic":738},{"name":107},{"id":412,"name":413,"tactic":740},{"name":107},{"id":416,"name":417,"tactic":742},{"name":107},{"id":420,"name":421,"tactic":744},{"name":107},{"id":424,"name":425,"tactic":746},{"name":107},{"id":428,"name":429,"tactic":748},{"name":124},{"id":448,"name":449,"tactic":750},{"name":145},{"id":752,"name":753,"tactics":754,"countermeasures":756},"T1539","Steal Web Session Cookie",[755],{"id":282,"name":283},[757,759,761,763,765,767,769,771,773],{"id":360,"name":361,"tactic":758},{"name":56},{"id":396,"name":397,"tactic":760},{"name":93},{"id":400,"name":401,"tactic":762},{"name":93},{"id":404,"name":405,"tactic":764},{"name":102},{"id":408,"name":409,"tactic":766},{"name":107},{"id":412,"name":413,"tactic":768},{"name":107},{"id":416,"name":417,"tactic":770},{"name":107},{"id":428,"name":429,"tactic":772},{"name":124},{"id":448,"name":449,"tactic":774},{"name":145},{"id":776,"name":777,"techniques":778},"CAPEC-31","Accessing/Intercepting/Modifying HTTP Cookies",[779],{"id":752,"name":753,"tactics":780,"countermeasures":782},[781],{"id":282,"name":283},[783,785,787,789,791,793,795,797,799],{"id":360,"name":361,"tactic":784},{"name":56},{"id":396,"name":397,"tactic":786},{"name":93},{"id":400,"name":401,"tactic":788},{"name":93},{"id":404,"name":405,"tactic":790},{"name":102},{"id":408,"name":409,"tactic":792},{"name":107},{"id":412,"name":413,"tactic":794},{"name":107},{"id":416,"name":417,"tactic":796},{"name":107},{"id":428,"name":429,"tactic":798},{"name":124},{"id":448,"name":449,"tactic":800},{"name":145},[],[],[],[805,807,809,811],{"_key":806},"ALPINE-CVE-2019-9496",{"_key":808},"OPENSUSE-SU-2020:0222-1",{"_key":810},"OPENSUSE-SU-2024:10846-1",{"_key":812},"DEBIAN-CVE-2019-9496",[],[815,816],{"_key":808},{"_key":810},"2019-04-17T13:31:08.000Z","2024-08-04T21:54:44.155Z","Modified",{"cisa_kev":821,"cisa_ransomware":821,"cisa_vendor":9,"epss_severity":822,"epss_score":823,"severity":824,"severity_score":825,"severity_version":826,"severity_source":827,"severity_vector":828,"severity_status":819},false,"low",0.0487,"high",7.5,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[830,838,842,847,851,855,860,866,871],{"url":831,"sources":832,"tags":834},"https://w1.fi/security/2019-3/",[833,827],"cve.org",[835,836,837],"X Refsource CONFIRM","Patch","Vendor Advisory",{"url":839,"sources":840,"tags":841},"https://www.synology.com/security/advisory/Synology_SA_19_16",[833,827],[835],{"url":843,"sources":844,"tags":845},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/56OBBOJJSKRTDGEXZOVFSTP4HDSDBLAE/",[833,827],[837,846],"X Refsource FEDORA",{"url":848,"sources":849,"tags":850},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TDOZGR3T7FVO5JSZWK2QPR7AOFIEJTIZ/",[833,827],[837,846],{"url":852,"sources":853,"tags":854},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVMJOFEYBGXZLFF5IOLW67SSOPKFEJP3/",[833,827],[837,846],{"url":856,"sources":857,"tags":858},"https://security.FreeBSD.org/advisories/FreeBSD-SA-19:03.wpa.asc",[833,827],[837,859],"X Refsource FREEBSD",{"url":861,"sources":862,"tags":863},"https://seclists.org/bugtraq/2019/May/40",[833,827],[864,865],"Mailing List","X Refsource BUGTRAQ",{"url":867,"sources":868,"tags":869},"http://packetstormsecurity.com/files/152914/FreeBSD-Security-Advisory-FreeBSD-SA-19-03.wpa.html",[833,827],[870],"X Refsource MISC",{"url":872,"sources":873,"tags":874},"http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00021.html",[833,827],[837,875],"X Refsource SUSE",[],{"date":878,"score":823,"percentile":879},"2026-06-03",0.89735,[881,885,888,891,894,897,899,901,904,907,910,912,914,917,920,924,927,930,933,936,938,940,943,945,948,950,953,955,958,961,964,967,969,971,973,975,978,981,984,987,990,993,995,998,1001,1004,1006,1009,1012,1015,1018,1021,1024,1026,1029,1031,1033,1036,1039,1042,1045,1048,1050,1052,1054,1057,1060,1063,1066,1068,1070,1072,1075,1078,1081,1084,1087,1089,1092,1095,1097,1100,1103,1106,1108,1111,1114,1117,1120,1123],{"date":882,"score":883,"percentile":884},"2025-11-04",0.02156,0.837,{"date":886,"score":883,"percentile":887},"2025-11-05",0.83705,{"date":889,"score":883,"percentile":890},"2025-11-06",0.83709,{"date":892,"score":883,"percentile":893},"2025-11-07",0.83715,{"date":895,"score":883,"percentile":896},"2025-11-08",0.83719,{"date":898,"score":883,"percentile":893},"2025-11-09",{"date":900,"score":883,"percentile":890},"2025-11-10",{"date":902,"score":883,"percentile":903},"2025-11-11",0.83713,{"date":905,"score":883,"percentile":906},"2025-11-12",0.83725,{"date":908,"score":883,"percentile":909},"2025-11-13",0.83732,{"date":911,"score":883,"percentile":909},"2025-11-14",{"date":913,"score":883,"percentile":906},"2025-11-15",{"date":915,"score":883,"percentile":916},"2025-11-16",0.83727,{"date":918,"score":883,"percentile":919},"2025-11-17",0.83726,{"date":921,"score":922,"percentile":923},"2025-11-18",0.06777,0.90391,{"date":925,"score":922,"percentile":926},"2025-11-19",0.90395,{"date":928,"score":922,"percentile":929},"2025-11-20",0.90399,{"date":931,"score":883,"percentile":932},"2025-11-21",0.83735,{"date":934,"score":883,"percentile":935},"2025-11-22",0.83733,{"date":937,"score":883,"percentile":919},"2025-11-23",{"date":939,"score":883,"percentile":919},"2025-11-24",{"date":941,"score":883,"percentile":942},"2025-11-25",0.83722,{"date":944,"score":883,"percentile":942},"2025-11-26",{"date":946,"score":883,"percentile":947},"2025-11-27",0.83721,{"date":949,"score":883,"percentile":890},"2025-11-28",{"date":951,"score":883,"percentile":952},"2025-11-29",0.83724,{"date":954,"score":883,"percentile":919},"2025-11-30",{"date":956,"score":883,"percentile":957},"2025-12-01",0.83797,{"date":959,"score":883,"percentile":960},"2025-12-02",0.83799,{"date":962,"score":883,"percentile":963},"2025-12-03",0.83801,{"date":965,"score":883,"percentile":966},"2025-12-04",0.8373,{"date":968,"score":883,"percentile":932},"2025-12-05",{"date":970,"score":883,"percentile":935},"2025-12-06",{"date":972,"score":883,"percentile":906},"2025-12-07",{"date":974,"score":883,"percentile":916},"2025-12-08",{"date":976,"score":883,"percentile":977},"2025-12-09",0.83739,{"date":979,"score":883,"percentile":980},"2025-12-10",0.83759,{"date":982,"score":883,"percentile":983},"2025-12-11",0.83772,{"date":985,"score":883,"percentile":986},"2025-12-12",0.8378,{"date":988,"score":883,"percentile":989},"2025-12-13",0.83775,{"date":991,"score":883,"percentile":992},"2025-12-14",0.83774,{"date":994,"score":883,"percentile":992},"2025-12-15",{"date":996,"score":883,"percentile":997},"2025-12-16",0.83782,{"date":999,"score":883,"percentile":1000},"2025-12-17",0.83788,{"date":1002,"score":883,"percentile":1003},"2025-12-18",0.83795,{"date":1005,"score":883,"percentile":960},"2025-12-19",{"date":1007,"score":883,"percentile":1008},"2025-12-20",0.83794,{"date":1010,"score":883,"percentile":1011},"2025-12-21",0.83791,{"date":1013,"score":883,"percentile":1014},"2025-12-22",0.83786,{"date":1016,"score":883,"percentile":1017},"2025-12-23",0.83789,{"date":1019,"score":883,"percentile":1020},"2025-12-24",0.838,{"date":1022,"score":883,"percentile":1023},"2025-12-25",0.83815,{"date":1025,"score":883,"percentile":1023},"2025-12-26",{"date":1027,"score":883,"percentile":1028},"2025-12-27",0.83857,{"date":1030,"score":883,"percentile":963},"2025-12-28",{"date":1032,"score":883,"percentile":957},"2025-12-29",{"date":1034,"score":883,"percentile":1035},"2025-12-30",0.83803,{"date":1037,"score":883,"percentile":1038},"2025-12-31",0.83817,{"date":1040,"score":883,"percentile":1041},"2026-01-01",0.83885,{"date":1043,"score":883,"percentile":1044},"2026-01-02",0.83883,{"date":1046,"score":883,"percentile":1047},"2026-01-03",0.83876,{"date":1049,"score":883,"percentile":1035},"2026-01-04",{"date":1051,"score":883,"percentile":957},"2026-01-05",{"date":1053,"score":883,"percentile":1035},"2026-01-06",{"date":1055,"score":883,"percentile":1056},"2026-01-07",0.83802,{"date":1058,"score":883,"percentile":1059},"2026-01-08",0.8381,{"date":1061,"score":883,"percentile":1062},"2026-01-09",0.83811,{"date":1064,"score":883,"percentile":1065},"2026-01-10",0.83806,{"date":1067,"score":883,"percentile":1065},"2026-01-11",{"date":1069,"score":883,"percentile":1020},"2026-01-12",{"date":1071,"score":883,"percentile":957},"2026-01-13",{"date":1073,"score":883,"percentile":1074},"2026-01-14",0.83818,{"date":1076,"score":883,"percentile":1077},"2026-01-15",0.83816,{"date":1079,"score":883,"percentile":1080},"2026-01-16",0.83825,{"date":1082,"score":883,"percentile":1083},"2026-01-17",0.83829,{"date":1085,"score":883,"percentile":1086},"2026-01-18",0.83822,{"date":1088,"score":883,"percentile":1038},"2026-01-19",{"date":1090,"score":883,"percentile":1091},"2026-01-20",0.83819,{"date":1093,"score":883,"percentile":1094},"2026-01-21",0.83824,{"date":1096,"score":883,"percentile":1083},"2026-01-22",{"date":1098,"score":883,"percentile":1099},"2026-01-23",0.83854,{"date":1101,"score":883,"percentile":1102},"2026-01-24",0.83863,{"date":1104,"score":883,"percentile":1105},"2026-01-25",0.83859,{"date":1107,"score":883,"percentile":1105},"2026-01-26",{"date":1109,"score":883,"percentile":1110},"2026-01-27",0.8386,{"date":1112,"score":883,"percentile":1113},"2026-01-28",0.83864,{"date":1115,"score":883,"percentile":1116},"2026-01-29",0.83865,{"date":1118,"score":883,"percentile":1119},"2026-01-30",0.83868,{"date":1121,"score":1122,"percentile":909},"2026-01-31",0.02116,{"date":1124,"score":1122,"percentile":963},"2026-02-01",[1126],{"source":827,"cvss_v2_0":1127,"cvss_v3_0":1132,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":1128,"baseSeverity":9,"vectorString":1129,"impactScore":1130,"exploitabilityScore":1131},5,"AV:N/AC:L/Au:N/C:N/I:N/A:P",2.9,10,{"baseScore":825,"baseSeverity":1133,"vectorString":828,"impactScore":1134,"exploitabilityScore":1131},"HIGH",6,[1136,1148,1158,1163,1170],{"ecosystem":9,"name":1137,"vendor":1138,"product":1137,"cpe_part":1139,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1140},"fedora","fedoraproject","o",[1141,1144,1146],{"version":1142,"is_range":821,"range_type":1143,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"28","cpe",{"version":1145,"is_range":821,"range_type":1143,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"29",{"version":1147,"is_range":821,"range_type":1143,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"30",{"ecosystem":9,"name":1149,"vendor":1150,"product":1149,"cpe_part":1151,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1152},"hostapd","w1.fi","a",[1153],{"version":1154,"is_range":1155,"range_type":1143,"version_start":9,"version_start_type":9,"version_end":1156,"version_end_type":1157,"fixed_in":9},"lte2.7",true,"2.7","including",{"ecosystem":9,"name":1159,"vendor":1150,"product":1160,"cpe_part":1151,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1161},"wpa supplicant","wpa_supplicant",[1162],{"version":1154,"is_range":1155,"range_type":1143,"version_start":9,"version_start_type":9,"version_end":1156,"version_end_type":1157,"fixed_in":9},{"ecosystem":9,"name":1164,"vendor":1165,"product":1166,"cpe_part":1151,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1167},"hostapd with SAE support","wi-fi alliance","hostapd with sae support",[1168],{"version":1169,"is_range":1155,"range_type":833,"version_start":1156,"version_start_type":1157,"version_end":1156,"version_end_type":1157,"fixed_in":9},">= 2.7, \u003C= 2.7",{"ecosystem":9,"name":1171,"vendor":1165,"product":1172,"cpe_part":1151,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":1173},"wpa_supplicant with SAE support","wpa_supplicant with sae support",[1174],{"version":1169,"is_range":1155,"range_type":833,"version_start":1156,"version_start_type":1157,"version_end":1156,"version_end_type":1157,"fixed_in":9}]