CVE-2022-40521

Transient DOS due to improper authorization in Modem...

CVE-2022-40505

Information disclosure due to buffer over-read in Modem while parsing DNS hostname...

CVE-2022-40536

Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network...

CVE-2022-26513

Out-of-bounds write in some IntelR XMMTM 7560 Modem software before version M27560R01.2146.00 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...

CVE-2020-11307

Buffer overflow in modem due to improper array index check before copying into it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables...

CVE-2024-23358

Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in Modem...

CVE-2024-23385

Transient DOS as modem reset occurs when an unexpected MAC RAR with invalid PDU length is seen at UE...

CVE-2025-20634

CVE-2025-20634 concerns MediaTek Modem firmware (notably MT8863 NR16/NR17 and related MT2737-based devices) where a missing bounds check enables an out-of-bounds write. The issue allows remote code execution over the network without user interaction, if the device connects to a rogue base station...

CVE-2025-20634

In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Pat...

MediaTek Chipsets 缓冲区错误漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A buffer error vulnerability exists in MediaTek Chipsets, which stems from the Modem module containing a missing bounds checking issue that could lead to out-of-bounds writes...

PT-2025-4153 · Mediatek · Mediatek Mt8863 Nr17 +2

Name of the Vulnerable Software and Affected Versions: MediaTek MT2737 and other products affected versions not specified MediaTek MT8863 NR16/NR17/NR17R Modem affected versions not specified Description: In the Modem, there is a possible out of bounds write due to a missing bounds check. This...

PT-2025-2507 · Modem · Modem

Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: The issue occurs when a registration accept message over-the-air OTA with incorrect ciphering key data is received, causing a transient denial of service DOS. This happens in the modem. No...

CVE-2025-0697

A vulnerability, which was classified as problematic, was found in Telstra Smart Modem Gen 2 up to 20250115. This affects an unknown part of the component HTTP Header Handler. The manipulation of the argument Content-Disposition leads to injection. It is possible to initiate the attack remotely...

CVE-2025-0697 Telstra Smart Modem Gen 2 HTTP Header injection

A vulnerability, which was classified as problematic, was found in Telstra Smart Modem Gen 2 up to 20250115. This affects an unknown part of the component HTTP Header Handler. The manipulation of the argument Content-Disposition leads to injection. It is possible to initiate the attack remotely...

CVE-2025-0697

Telstra Smart Modem Gen 2 (up to 20250115) is affected by a vulnerability in the HTTP Header Handler where manipulation of the Content-Disposition argument leads to injection. The issue can be triggered remotely. Affected component/file: HTTP Header Handler; root cause described as Content-Dispos...

Telstra Smart Modem 安全漏洞

Telstra Smart Modem is a smart modem from Telstra. A security vulnerability exists in Telstra Smart Modem Gen 2 20250115 and earlier versions, which stems from the parameter Content-Disposition of the component HTTP Header Handler can lead to injection...

PT-2025-4006 · Telstra · Telstra Smart Modem Gen 2

Name of the Vulnerable Software and Affected Versions: Telstra Smart Modem Gen 2 up to 20250115 Description: A problematic issue was found in the HTTP Header Handler component. The manipulation of the Content-Disposition argument leads to injection. This issue can be initiated remotely. The vendo...

CVE-2024-13502 A command injection in the NTC2218, NTC2250, NTC2299 modems' web interfaces allows to exeucte arbitrary shell commands.

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Newtec/iDirect NTC2218, NTC2250, NTC2299 on Linux, PowerPC, ARM allows Local Code Inclusion.This issue affects NTC2218, NTC2250, NTC2299: from 1.0.1.1 through 2.2.6.19. The commitmulticast pa...

UBUNTU-CVE-2024-39282

In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: Fix FSM command timeout issue When driver processes the internal state change command, it use an asynchronous thread to process the command operation. If the main thread detects that the task has timed out, the...

CVE-2024-48883

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, and Modem 5300. The UE incorrectly handles a malformed uplink scheduling message, resulting in ...