0.002 Low
EPSS
Percentile
57.0%
hostapd 0.6.7 through 2.5 and wpa_supplicant 0.6.7 through 2.5 do not reject \n and \r characters in passphrase parameters, which allows remote attackers to cause a denial of service (daemon outage) via a crafted WPS operation.
www.openwall.com/lists/oss-security/2016/05/03/12
www.ubuntu.com/usn/USN-3455-1