Shodan
Vulnerabilities
Vulnerable Software
Alfa:  Security Vulnerabilities
CVE-2025-45847
ALFA AIP-W512 v3.2.2.2.3 was discovered to contain an authenticated stack overflow via the targetAPMac parameter in the formWsc function.
CVSS Score
6.5
EPSS Score
0.001
Published
2025-05-08
CVE-2025-45846
ALFA AIP-W512 v3.2.2.2.3 was discovered to contain an authenticated stack overflow via the torrentsindex parameter in the formBTClinetSetting function.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-05-08
CVE-2025-29046
Buffer Overflow vulnerability inALFA WiFi CampPro router ALFA_CAMPRO-co-2.29 allows a remote attacker to execute arbitrary code via the GAPSMinute3 key value
CVSS Score
9.8
EPSS Score
0.006
Published
2025-04-17
CVE-2025-29047
Buffer Overflow vulnerability inALFA WiFi CampPro router ALFA_CAMPRO-co-2.29 allows a remote attacker to execute arbitrary code via the hiddenIndex in the function StorageEditUser
CVSS Score
9.8
EPSS Score
0.006
Published
2025-04-17
CVE-2025-29045
Buffer Overflow vulnerability in ALFA_CAMPRO-co-2.29 allows a remote attacker to execute arbitrary code via the newap_text_0 key value
CVSS Score
9.8
EPSS Score
0.006
Published
2025-04-17
CVE-2020-26140
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration.
CVSS Score
6.5
EPSS Score
0.004
Published
2021-05-11
CVE-2020-26141
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol.
CVSS Score
6.5
EPSS Score
0.003
Published
2021-05-11
CVE-2020-26143
An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration.
CVSS Score
6.5
EPSS Score
0.014
Published
2021-05-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved