Double free

Memory Corruption in Modem due to double free while parsing the PKCS15 sim files...

Memory corruption

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data...

CVE-2023-28541 Buffer Over-read in WLAN Host

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data...

CVE-2023-28541

CVE-2023-28541 affects Qualcomm Data Modem (WLAN), with memory corruption during DMA buffer release involving CFR data. CVSSv3.1 base score 7.8 (HIGH) via NVD/Qualcomm metrics; impact includes confidentiality, integrity, and availability. Connected sources confirm the issue under Qualcomm compone...

CVE-2023-21631 Improper Input Validation in Modem

Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network...

CVE-2023-21631

CVE-2023-21631 describes a weakness in Qualcomm modem firmware due to improper input validation when processing LTE security mode command messages from the network. The vulnerability affects the modem component and can lead to high-impact outcomes (as reflected in CVSS: high/critical with Confide...

CVE-2023-21631 Improper Input Validation in Modem

Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network...

CVE-2023-21629

CVE-2023-21629 refers to memory corruption in Qualcomm closed‑source modem components caused by a double free while parsing PKCS15 SIM files. The CVSSv3.1 base metrics (6.8, MEDIUM) from NVD indicate physical access is required with low attack complexity and no privileges, but high impact to conf...

CVE-2023-21629 Double Free in Modem

Memory Corruption in Modem due to double free while parsing the PKCS15 sim files...

CVE-2023-21629 Double Free in Modem

Memory Corruption in Modem due to double free while parsing the PKCS15 sim files...

PT-2023-18294 · Modem · Modem

Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: The issue is related to a weak configuration in the Modem due to improper input validation when processing LTE security mode command messages received from the network. This can lead to...

The vulnerability of the microprogramming software for Samsung Exynos Modems 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123 allows a hacker to cause service failures.

The vulnerability of the microprogramming software for Samsung Exynos Modems 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123 lies in the fact that operations occur outside the memory buffer during the decoding of the status string. Exploiting this vulnerabilit...

PT-2023-18292 · Qualcomm · Sd205 Firmware +254

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to memory corruption in a modem, caused by a double free error that occurs while parsing PKCS15 sim files. Recommendations: At the...

Qualcomm Chipsets 资源管理错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from a double release issue when parsing PKCS15 sim files, resulting in memory corruption in the Modem...

PT-2023-21789 · Unknown · Data Modem

Name of the Vulnerable Software and Affected Versions: Data Modem affected versions not specified Description: The issue is related to memory corruption in the Data Modem when processing a DMA buffer release event concerning CFR data. Recommendations: At the moment, there is no information about ...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from improper input validation of the Modem when receiving LTE Safe Mode Command messages...

Samsung Mobile Devices Out-of-Bounds Read Vulnerability

Samsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in setskbpriv, leading to remote code execution by dereference of an invalid function pointer...

Samsung Mobile Devices Improper Input Validation Vulnerability

Samsung mobile devices contain an improper input validation vulnerability within the modem interface driver that results in a format string bug leading to kernel panic...

CVE-2023-21156

In BuildGetRadioNode of protocolmiscbulider.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure from the modem with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...

CVE-2023-21156

In BuildGetRadioNode of protocolmiscbulider.cpp, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure from the modem with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion...