149 matches found
CVE-2025-49494
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 2100, 1280, 2200, 1330, 1380, 1480, 9110, Modem 5123. Mishandling of an 5G NRMM packet leads to a Denial of Service...
EUVD-2025-1482
Malicious code in bioql PyPI...
EUVD-2025-30911
Malicious code in bioql PyPI...
CVE-2025-56394
Free5gc 4.0.1 is vulnerable to Buffer Overflow. The AMF incorrectly validates the 5GS mobile identity, resulting in slice reference overflow...
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to improper validation of the 5GS mobile identity by the AMF in the Registration Request. An attacker can cause a slice reference overflow by sending specially crafted input data. Remediation Upgrade...
CVE-2025-56394
Free5gc 4.0.1 is vulnerable to Buffer Overflow. The AMF incorrectly validates the 5GS mobile identity, resulting in slice reference overflow...
CVE-2025-3212
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform valid GPU memory processing operations to gain access to already freed memory.This issue...
CVE-2025-3212
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform valid GPU memory processing operations to gain access to already freed memory.This issue...
New Sni5Gect Attack Crashes Phones and Downgrades 5G to 4G without Rogue Base Station
A team of academics has devised a novel attack that can be used to downgrade a 5G connection to a lower generation without relying on a rogue base station gNB. The attack, per the ASSET Automated Systems SEcuriTy Research Group at the Singapore University of Technology and Design SUTD, relies on ...
Linux Distros Unpatched Vulnerability : CVE-2024-21853
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper finite state machines FSMs in the hardware logic in some 4th and 5th Generation IntelR XeonR Processors may allow an authorized user to potentially...
$AutoGuardX$: a Comprehensive Cybersecurity Framework for Connected Vehicles
The rapid integration of Internet of Things IoT and interconnected systems in modern vehicles not only introduced a new era of convenience, automation, and connected vehicles but also elevated their exposure to sophisticated cyber threats. This is especially evident in US and Canada, where...
Modern vehicle cybersecurity trends
Modern vehicles are transforming into full-fledged digital devices that offer a multitude of features, from common smartphone-like conveniences to complex intelligent systems and services designed to keep everyone on the road safe. However, this digitalization, while aimed at improving comfort an...
Sni5Gect: a Practical Approach to Inject aNRchy into 5G NR
In this paper, the authors propose and design SNI5GECT – a framework that sniffs messages from pre-authentication 5G communication in real-time and injects targeted attack payload in downlink communication towards the UE...
2025.2 IPU - Intel® TDX Module Advisory
Summary: A potential security vulnerability in Intel® Trust Domain Extensions TDX Module may allow escalation of privilege. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-20044 Description: Improper locking for some Intel® TDX...
System Security Framework for 5G Advanced /6G IoT Integrated Terrestrial Network-Non-Terrestrial Network (TN-NTN) with AI-Enabled Cloud Security
The integration of Terrestrial Networks TN and Non-Terrestrial Networks NTN, including 5G Advanced/6G and the Internet of Things IoT technologies, using Low Earth Orbit LEO satellites, high-altitude platforms HAPS, and Unmanned Aerial Vehicles UAVs, is redefining the landscape of global...
Jointelli 5G CPE 21H01 安全漏洞
The Jointelli 5G CPE 21H01 is a router from the Chinese company Jointelli. A security vulnerability exists in the Jointelli 5G CPE 21H01 JY21H01A3v1.36 version, which stems from the presence of OS command injection on multiple endpoints that could lead to the execution of arbitrary commands...
CVE-2025-0932
Use After Free vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to perform valid GPU processing operations, including via WebGL or WebGPU, to gain access to alrea...
CVE-2025-0932
Use After Free vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to perform valid GPU processing operations, including via WebGL or WebGPU, to gain access to alrea...
ARM多款产品 安全漏洞
ARM Bifrost GPU Userspace Driver and others are a userspace driver from ARM UK. A security vulnerability exists in various ARM products that stems from reuse after release and could lead to access to freed memory. The following products are affected: Bifrost GPU Userspace Driver, Valhall GPU...
DTHA: a Digital Twin-Assisted Handover Authentication Scheme for 5G and Beyond
With the rapid development and extensive deployment of the fifth-generation wireless system 5G, it has achieved ubiquitous high-speed connectivity and improved overall communication performance. Additionally, as one of the promising technologies for integration beyond 5G, digital twin in cyberspa...