303 matches found
CVE-2021-37109
There is a security protection bypass vulnerability with the modem.Successful exploitation of this vulnerability may cause memory protection failure...
CVE-2020-11307
CVE-2020-11307 describes a buffer overflow in Qualcomm’s modem stack due to an improper array index check when copying into a buffer in multiple Snapdragon family components (Auto, Compute, Connectivity, CIoT, Industrial IoT, Wearables). The root cause is an input/length handling issue that can l...
Qualcomm 芯片缓冲区错误漏洞
Qualcomm MDM9206 and others are products of Qualcomm Incorporated Qualcomm.MDM9206 is a central processing unit CPU product.APQ8053 is a central processing unit CPU product.SDX55 is a modem. qualcomm A buffer error vulnerability exists in multiple products that stems from a lack of length checkin...
Unspecified Vulnerability in Technicolor TC7337
Technicolor TC7337NET is a modem from the French company Technicolor. A security vulnerability exists in the Technicolor TC7337 version 8.89.17. An attacker can exploit the vulnerability to view administrator credentials in the backupsettings.conf backup file...
Input Validation Error Vulnerability in Multiple Qualcomm Products (CNVD-2020-20201)
The Qualcomm MDM9206 and others are products of Qualcomm Incorporated, U.S.A. The MDM9206 is a central processing unit CPU product.The SDX24 is a modem.The APQ8017 is a central processing unit CPU product. An input validation error vulnerability exists in Data Modem in multiple Qualcomm products,...
NETCORE Netis DL4323 Cross-Site Scripting Vulnerability
NETCORE Netis DL4323 is a multi-function modem from China's NETCORE. A cross-site scripting vulnerability exists in the NETCORE Netis DL4323, which stems from the lack of proper validation of client data by the WEB application, and can be exploited by an attacker to execute client code...
GSNDCP Module Buffer Overflow Vulnerability in Multiple Qualcomm Products
Qualcomm MDM9206 and others are products of Qualcomm Incorporated.The MDM9206 is a central processing unit CPU product.The MDM9607 is a central processing unit CPU product.The SDX24 is a modem.The MDM9206 is a central processing unit CPU product.The MDM9607 is a central processing unit CPU...
Compal Broadband CH7465LG modem path traversal vulnerability
The Compal Broadband CH7465LG modem is a modem from Compal Computer Industries Compal of Taiwan, China. A path traversal vulnerability exists in the web interface of the Compal Broadband CH7465LG modem CH7465LG-NCIP-6.12.18.25-2p6-NOSH version, which arises from a failure of a networked system or...
CVE-2019-10538
Lack of check of address range received from firmware response allows modem to respond arbitrary pages into its address range which can compromise HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdrag...
Multiple Qualcomm Snapdragon Products Information Disclosure Vulnerability (CNVD-2018-25411)
The Qualcomm MDM9206 and others are products of Qualcomm Incorporated of the U.S. The Qualcomm MDM9206 is a central processing unit CPU.The SDX24 is a modem. An information disclosure vulnerability exists in the MODEM in multiple Qualcomm Snapdragon products, which can be exploited by attackers t...
Cisco IOS XE Software for Cisco ASR 920 Series Routers Arbitrary Command Execution Vulnerability
A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to inject and execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to...
ZTE ADSL ZXV10 W300 Password Interception Vulnerability
The ZTE ADSL ZXV10 W300 is an ADSL modem Modem product from China's ZTE Corporation ZTE. A security vulnerability exists in the ZTE ADSL ZXV10 W300 W300V2.1.0fER7PEO57 version and W300V2.1.0hER7PEO57 version. A remote attacker can exploit this vulnerability to change the administrator password by...
Vulnerability of the microprogramming software of the Onecell G3100v2 and Onecell G3001 modems, allowing a intruder to gain access to the device
The vulnerability of the microprogrammed software of the Onecell G3100v2 and Onecell G3001 modems lies in the improper limitation on the number of authentication attempts. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to the device through a...
WIMAX LX350P(WIXFMR-108) - Multiple Vulnerabilities
WIMAX LX350PWIXFMR-108 - Multiple Vulnerabilities Exploit Title: WIMAX LX350PWIXFMR-108 - Multiple Vulnerabilities Date: ˝Friday, ˝December ˝11, ˝2015 Exploit/Vulnerability Author: Alireza Azimzadeh Milani alimp5 Vendor Homepage: http://www.greenpacket.com Version: v2.10.14-g1.5.2 Tested on:...
ZTE ZXDSL 831CII - Insecure Direct Object Reference
No description provided by source. Exploit Title: ZTE ZXDSL 831 Insecure Direct Object Reference Date: 11/3/2014 Exploit Author: Paulos Yibelo Vendor Homepage: zte.com.cn Software Link: - Version: - Tested on: Windows 7 CVE :- ZTE ZXDSL 831CII suffers from an insecure direct object reference...
P1 WiMAX Modem Default Credentials Unauthorized Access Vulnerability
This host has P1 WiMAX Modem and is prone default credentials unauthorized access vulnerability. OpenVAS Vulnerability Test $Id: gbp1wimaxmodemdefaultcredentialsuavuln.nasl 5816 2017-03-31 10:16:41Z cfi $ P1 WiMAX Modem Default Credentials Unauthorized Access Vulnerability Authors: Antu Sanadi...
On the Evil Maid USB Attack, Time Warner and the Cybersecurity Czar
Dennis Fisher and Ryan Naraine discuss the Evil Maid USB attack, the Time Warner modem vulnerability and that old standby: the cybersecurity czar. Download SHOW NOTES: How to Defeat Full-Disk Encryption in One Minute Time Warner Router Flaw Exposes Customers Apathy Creeps In as Cybersecurity Czar...
Ericsson HM220dp DSL Modem - World Accessible Web Administration Interface
Ericsson HM220dp DSL Modem - World Accessible Web Administration Interface source: https://www.securityfocus.com/bid/6824/info The Ericsson HM220dp DSL Modem uses a web interface for remote administration and configuration. This interface does not require any authentication in order to access...
CVE-2002-0119
Alcatel Speed Touch Home ADSL Modem allows remote attackers to cause a denial of service reboot via a network scan with unusual packets, such as nmap with OS detection...
CVE-1999-1228
Various modems that do not implement a guard time, or are configured with a guard time of 0, can allow remote attackers to execute arbitrary modem commands such as ATH, ATH0, etc., via a "+++" sequence that appears in ICMP packets, the subject of an e-mail message, IRC commands, and others...