Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3777 matches found

CVE
CVEadded 2025/05/05 2:49 a.m.73 views

CVE-2025-20670

CVE-2025-20670 concerns a vulnerability in a Modem where improper certificate validation enables a permission bypass, potentially causing remote information disclosure if a UE connects to a rogue base station controlled by an attacker. Exploitation requires user interaction and the attacker would...

5.7CVSS6.8AI score0.0027EPSS
Exploits0References1Affected Software3
CVE
CVEadded 2025/05/05 2:49 a.m.60 views

CVE-2025-20667

CVE-2025-20667 concerns a remote information disclosure in the Modem due to incorrect error handling. The vulnerability allows information disclosure without user interaction if a user equipment (UE) connects to a rogue base station controlled by an attacker, with no additional execution privileg...

7.5CVSS6.2AI score0.00375EPSS
Exploits0References1Affected Software6
Cvelist
Cvelistadded 2025/05/05 2:49 a.m.16 views

CVE-2025-20667

In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for...

0.00375EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/05/05 2:49 a.m.9 views

CVE-2025-20666

In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID...

7.5AI score0.00679EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/05/05 12:0 a.m.3 views

PT-2025-19333 · Huawei · Huawei Modem

Name of the Vulnerable Software and Affected Versions: Huawei Modem affected versions not specified Description: The issue is related to a possible permission bypass due to improper certificate validation in the Modem. This could lead to remote information disclosure if a UE has connected to a...

5.7CVSS6.1AI score0.0027EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2025/05/05 12:0 a.m.4 views

PT-2025-19330 · Modem · Modem

Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker,...

7.5CVSS6.4AI score0.00679EPSS
Exploits0References15
Positive Technologies
Positive Technologiesadded 2025/05/05 12:0 a.m.5 views

PT-2025-19331 · Modem · Modem

Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure if a UE has connected to a rogue base station controlled...

7.5CVSS6.1AI score0.00375EPSS
Exploits0References10
RedhatCVE
RedhatCVEadded 2025/05/02 8:28 p.m.25 views

CVE-2024-6029

Tesla Model S Iris Modem Race Condition Firewall Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass the firewall on the Iris modem in affected Tesla Model S vehicles. Authentication is not required to exploit this vulnerability. The specific flaw exists within th...

5CVSS6.5AI score0.00173EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/05/02 8:13 p.m.14 views

CVE-2024-6032

Tesla Model S Iris Modem qlatfwd Command Injection Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected Tesla Model S vehicles. An attacker must first obtain the ability to execute code on the target system in order to exploit this...

7.8CVSS7.7AI score0.005EPSS
Exploits0References3
OSV
OSVadded 2025/04/30 8:15 p.m.3 views

CVE-2024-6031

Tesla Model S oFono AT Command Heap-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected Tesla Model S vehicles. An attacker must first obtain the ability to execute code on the target modem in order to exploit this...

7.8CVSS7.5AI score
Exploits0References1
OSV
OSVadded 2025/04/30 8:15 p.m.3 views

CVE-2024-6032

Tesla Model S Iris Modem qlatfwd Command Injection Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected Tesla Model S vehicles. An attacker must first obtain the ability to execute code on the target system in order to exploit this...

7.8CVSS6.2AI score0.005EPSS
Exploits0References1
OSV
OSVadded 2025/04/30 8:15 p.m.2 views

CVE-2024-6029

Tesla Model S Iris Modem Race Condition Firewall Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass the firewall on the Iris modem in affected Tesla Model S vehicles. Authentication is not required to exploit this vulnerability. The specific flaw exists within th...

5CVSS5.8AI score0.00173EPSS
Exploits0References1
OSV
OSVadded 2025/04/30 8:15 p.m.2 views

CVE-2024-13943

Tesla Model S Iris Modem QCMAPConnectionManager Improper Input Validation Sandbox Escape Vulnerability. This vulnerability allows local attackers to escape the sandbox on affected affected Tesla Model S vehicles. An attacker must first obtain the ability to execute low-privileged code on the targ...

7.8CVSS6AI score
Exploits0References1
NVD
NVDadded 2025/04/30 8:15 p.m.22 views

CVE-2024-6029

Tesla Model S Iris Modem Race Condition Firewall Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass the firewall on the Iris modem in affected Tesla Model S vehicles. Authentication is not required to exploit this vulnerability. The specific flaw exists within th...

5CVSS0.00173EPSS
Exploits0References1
CVE
CVEadded 2025/04/30 8:0 p.m.66 views

CVE-2024-6032

CVE-2024-6032. Concrete details across connected sources show a local command-injection in Tesla Model S Iris Modem via the ql_atfwd process. The flaw stems from inadequate validation of a user-supplied string used to form a system call, allowing an attacker with code execution on the target to r...

7.8CVSS8AI score0.005EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/04/30 8:0 p.m.38 views

CVE-2024-6032 Tesla Model S Iris Modem ql_atfwd Command Injection Code Execution Vulnerability

Tesla Model S Iris Modem qlatfwd Command Injection Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected Tesla Model S vehicles. An attacker must first obtain the ability to execute code on the target system in order to exploit this...

7.8CVSS0.005EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/04/30 8:0 p.m.8 views

CVE-2024-6032 Tesla Model S Iris Modem ql_atfwd Command Injection Code Execution Vulnerability

Tesla Model S Iris Modem qlatfwd Command Injection Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected Tesla Model S vehicles. An attacker must first obtain the ability to execute code on the target system in order to exploit this...

7.8CVSS8AI score0.005EPSS
Exploits0References1
CVE
CVEadded 2025/04/30 8:0 p.m.49 views

CVE-2024-13943

CVE-2024-13943 describes a local sandbox-escape vulnerability in the Tesla Model S Iris Modem, specifically within the QCMAP_ConnectionManager. The flaw allows a low-privilege local attacker to exploit improper input validation to assign LAN addresses to the WWAN, enabling access to network servi...

7.8CVSS7.1AI score0.0014EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/04/30 8:0 p.m.21 views

CVE-2024-13943 Tesla Model S Iris Modem QCMAP_ConnectionManager Improper Input Validation Sandbox Escape Vulnerability

Tesla Model S Iris Modem QCMAPConnectionManager Improper Input Validation Sandbox Escape Vulnerability. This vulnerability allows local attackers to escape the sandbox on affected affected Tesla Model S vehicles. An attacker must first obtain the ability to execute low-privileged code on the targ...

7.8CVSS7.1AI score0.0014EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/04/30 8:0 p.m.30 views

CVE-2024-13943 Tesla Model S Iris Modem QCMAP_ConnectionManager Improper Input Validation Sandbox Escape Vulnerability

Tesla Model S Iris Modem QCMAPConnectionManager Improper Input Validation Sandbox Escape Vulnerability. This vulnerability allows local attackers to escape the sandbox on affected affected Tesla Model S vehicles. An attacker must first obtain the ability to execute low-privileged code on the targ...

7.8CVSS0.0014EPSS
Exploits0References1
Rows per page
Query Builder