CVE-2024-52923

An issue was discovered in NRMM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Lack of a boundary check during the decoding of DL NAS...

CVE-2024-52924

An issue was discovered in NRMM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Lack of boundary check during the decoding of Registration...

CVE-2024-52923

An issue was discovered in NRMM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Lack of a boundary check during the decoding of DL NAS...

CVE-2025-20647

In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch I...

Linux Distros Unpatched Vulnerability : CVE-2024-22123

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Setting SMS media allows to set GSM modem file. Later this file is used as Linux device. But due everything is a file for Linux, it is possible to set another...

CVE-2024-38426 Improper Authentication in Modem

While processing the authentication message in UE, improper authentication may lead to information disclosure...

CVE-2025-20647

In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch I...

MediaTek Modem 安全漏洞

MediaTek Modem is a 5G modem technology from MediaTek, a Chinese company. A security vulnerability exists in MediaTek Modem that stems from mishandling of errors and could lead to a remote denial of service...

PT-2025-35541

Name of the Vulnerable Software and Affected Versions Qualcomm Multi-Mode Call Processor affected versions not specified Qualcomm Snapdragon chips affected versions not specified Description A memory corruption issue exists when selecting the PLMN Public Land Mobile Network from the SOR Serving a...

MediaTek Modem 代码问题漏洞

MediaTek Modem is a 5G modem technology from China-based MediaTek. A security vulnerability exists in MediaTek Modem that stems from a lack of boundary checking and could lead to a remote denial of service...

PUB-A-303771271

there is a possible way to crash the modem due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

DrayTek Vigor 165 安全漏洞

The DrayTek Vigor 165 is a VDSL2 35b hypervector modem/router from China DrayTek DrayTek. A security vulnerability exists in the DrayTek Vigor 165 that stems from passwords being stored in plaintext...

PT-2025-7541

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version that includes the fix for this issue Description A memory corruption issue exists due to incorrect handling of control transfer buffer sizes in the usb: cdc-acm module. When the first fragment is...

CVE-2025-20634

In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Pat...

CVE-2024-38404

Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem...

CVE-2022-25738

Information disclosure in modem due to buffer over-red while performing checksum of packet received...

CVE-2022-25747

Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message...

CVE-2022-25729

Memory corruption in modem due to improper length check while copying into memory...

CVE-2022-25730

Information disclosure in modem due to improper check of IP type while processing DNS server query...

CVE-2022-25671

Denial of service in MODEM due to reachable assertion in Snapdragon Mobile...