CVE-2024-39890

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300. The baseband software does not properly check the length specified by the CC Call...

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek MediaTek. A security vulnerability exists in MediaTek Chipsets that stems from an incorrect Modem boundary check, which could lead to elevation of privilege...

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek MediaTek. A security vulnerability exists in MediaTek Chipsets that stems from an incorrect Modem boundary check, which could lead to elevation of privilege...

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets that originates from a Modem Task Boundary Check that could result in an out-of-bounds write...

PT-2024-28461 · Samsung · Samsung Modem +1

Name of the Vulnerable Software and Affected Versions: Samsung Exynos versions 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110 Samsung Modem versions 5123, 5300 Description: The baseband software does not properly check the length specified by the MM Mobility Management module, which can lead to...

CVE-2024-39343

An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, Modem 5123, and Modem 5300. The baseband software does not properly check the length specified by the MM Mobility Management module, which can lead to Denial of Servic...

PT-2024-18617

Name of the Vulnerable Software and Affected Versions Modem affected versions not specified Description The issue is related to a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User...

PT-2024-18619 · Modem · Modem

Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: The issue is related to an incorrect bounds check in the Modem, which could lead to a local escalation of privilege. System execution privileges are needed for exploitation, and user...

PT-2024-18618 · Modem · Modem

Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: The issue is related to a possible out of bounds write due to a mission bounds check in Modem. This could lead to local escalation of privilege with no additional execution privileges needed...

CVE-2024-11494

UNSUPPORTED WHEN ASSIGNED The improper authentication vulnerability in the Zyxel P-6101C ADSL modem firmware version P-6101CSA6AP20140331 could allow an unauthenticated attacker to read some device information via a crafted HTTP HEAD method...

CVE-2024-11494

UNSUPPORTED WHEN ASSIGNED The improper authentication vulnerability in the Zyxel P-6101C ADSL modem firmware version P-6101CSA6AP20140331 could allow an unauthenticated attacker to read some device information via a crafted HTTP HEAD method...

CVE-2024-11494

CVE-2024-11494 affects Zyxel P-6101C ADSL modem, specifically firmware version P-6101CSA6AP_20140331. The vulnerability is described as improper authentication that could allow an unauthenticated attacker to read certain device information via a crafted HTTP HEAD request. The CVSS 3.1 vector is N...

The vulnerability of the SSH and Telnet protocol implementations of the D-Link DSL6740C modem’s microprogramming software allows a intruder to execute arbitrary commands.

The vulnerability of SSH and Telnet protocols implemented by the microprogramming software of the D-Link DSL6740C modem lies in the lack of measures taken to neutralize the special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute...

The vulnerability of the D-Link DSL6740C modem’s microprogramming software lies in its ability to bypass security measures. This allows attackers to read arbitrary system files, obtain the device’s MAC address, and attempt to gain access to the system.

The vulnerability of D-Link DSL6740C modem’s microprogramming software is related to the possibility of bypassing security measures. Exploiting this vulnerability allows a malicious actor to read arbitrary system files, obtain the device’s MAC address, and attempt to log into the system using...

The vulnerability of the microprogrammed software of the D-Link DSL6740C modem, related to the lack of measures to neutralize special elements, allows a violator to execute arbitrary commands.

The vulnerability of the D-Link DSL6740C modem’s microprogramming software exists due to the lack of measures taken to neutralize the special elements used in the operating system’s commands. Exploiting this vulnerability allows a malicious actor to remotely inject and execute arbitrary system...

The vulnerability of the D-Link DSL6740C modem’s microprogramming software lies in errors that occur when privileged application programming interfaces are used. This allows a perpetrator to gain access to the device.

The vulnerability of the D-Link DSL6740C modem’s microprogramming software is related to errors that occur when privileged application programming interfaces APIs are used. Exploiting this vulnerability can allow a malicious actor to gain access to the device by sending a specially crafted API...

CVE-2024-11068

The D-Link DSL6740C modem has an Incorrect Use of Privileged APIs vulnerability, allowing unauthenticated remote attackers to modify any user’s password by leveraging the API, thereby granting access to Web, SSH, and Telnet services using that user’s account...

CVE-2024-11062

The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...

CVE-2024-11064

The CVE-2024-11064 entry concerns the D-Link DSL6740C modem with an OS Command Injection flaw. Public documents describe an issue in the firmware where a vulnerability in the SSH/Telnet functionality allows a remote attacker with administrator privileges to inject and execute arbitrary system com...

CVE-2024-11063 D-Link DSL6740C - OS Command Injection

The D-Link DSL6740C modem has an OS Command Injection vulnerability, allowing remote attackers with administrator privileges to inject and execute arbitrary system commands through a specific functionality provided by SSH and Telnet...