CVE-2020-11226

Out of bound memory read in Data modem while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

CVE-2020-11186

Modem will enter into busy mode in an infinite loop while parsing histogram dimension due to improper validation of input received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile...

CVE-2020-11186

CVE-2020-11186 affects Qualcomm closed‑source components (Snapdragon Auto/Compute/Connectivity/Mobile). The issue arises from improper validation of input in the Qualcomm/ Snapdragon stack, causing the modem to enter a busy state in an infinite loop while parsing histogram dimension. Impact descr...

Qualcomm 组件 输入验证错误漏洞

The Qualcomm component is a component of Qualcomm Incorporated Qualcom. Intrinsic components that provide Qualcomm devices A security vulnerability exists in the Qualcomm Closed Source Component that stems from a lack of offset length checking that reads out-of-limit memory when unpacking data in...

The vulnerability of the microprogramming software of the Intel 7360 Cell Modem router, related to the execution of operations outside the buffer in memory, allows a hacker to cause a service failure.

The vulnerability of the microprogramming software of the Intel 7360 Cell Modem lies in the fact that the operation results are written outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service failure remotely...

CVE-2020-24482

Improper buffer restrictions in firmware for IntelR 7360 Cell Modem before UDE version 9.4.370 may allow unauthenticated user to potentially enable denial of service via network access...

CVE-2020-24482

Improper buffer restrictions in firmware for IntelR 7360 Cell Modem before UDE version 9.4.370 may allow unauthenticated user to potentially enable denial of service via network access...

CVE-2020-24482

Improper buffer restrictions in firmware for IntelR 7360 Cell Modem before UDE version 9.4.370 may allow unauthenticated user to potentially enable denial of service via network access...

CVE-2020-24482

The CVE-2020-24482 issue affects Intel’s XMM 7360 Cell Modem firmware prior to UDE 9.4.370, due to improper buffer restrictions that may let an unauthenticated user trigger a denial of service over the network. Intel’s advisory (Intel‑SA‑00453) confirms affected firmware and provides mitigation g...

Intel Squashes High-Severity Graphics Driver Flaws

Intel has issued fixes for five high-severity vulnerabilities in its graphics drivers. Attackers can exploit these flaws to launch an array of malicious attacks – such as escalating their privileges, stealing sensitive data or launching denial-of-service attacks. The graphics driver is software...

Intel 7360 Cell Modem 缓冲区错误漏洞

Intel is an American company that develops CPUs and is the world's largest manufacturer of personal computer parts and CPUs. A denial of service vulnerability exists in the Intel® 7360 Cell Modem firmware, which can be exploited by an attacker to cause a denial of service...

Qualcomm Data Modem Input Validation Error Vulnerability

Qualcomm Data Modem is a data modem from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Data Modem that stems from a failure to check input validation of certain parameters received from the ePDG server, which could result in a buffer overflow...

PSC - E2E Encryption For Multi-Hop Tty Sessions Or Portshells + TCP/UDP Port Forward

DNS lookup and SSH session forwarded across an UART connection to a Pi PSC allows to e2e encrypt shell sessions, single- or multip-hop, being agnostic of the underlying transport, as long as it is reliable and can send/receive Base64 encoded data without modding/filtering. Along with the e2e pty...

CVE-2020-35219

The ASUS DSL-N17U modem with firmware 1.1.0.2 allows attackers to access the admin interface by changing the admin password without authentication via a POST request to AdvancedSystemContent.asp with the uiViewToolsusername=admin&uiViewToolsPassword= and uiViewToolsPasswordConfirm= substrings...

CVE-2020-35219

The ASUS DSL-N17U modem with firmware 1.1.0.2 allows attackers to access the admin interface by changing the admin password without authentication via a POST request to AdvancedSystemContent.asp with the uiViewToolsusername=admin&uiViewToolsPassword= and uiViewToolsPasswordConfirm= substrings...

CVE-2020-35219

The CVE-2020-35219 issue affects the ASUS DSL-N17U modem with firmware 1.1.0.2. The vulnerability allows an unauthenticated attacker to change the admin password and gain admin access by issuing a POST to Advanced_System_Content.asp with uiViewTools_username=admin, uiViewTools_Password=, and uiVi...

NETGEAR DGN2200v1 Command Injection Vulnerability

The NETGEAR DGN2200v1 is an N300 wireless ADSL2+ modem router. A command injection vulnerability exists in versions prior to NETGEAR DGN2200v1 v1.0.0.58. No details of the vulnerability are provided at this time...

CVE-2019-19563

A misconfiguration in the debug interface in Mercedes-Benz HERMES 2.1 allows an attacker with direct physical access to device hardware to obtain cellular modem information...

CVE-2019-19557

A misconfiguration in the debug interface in Mercedes-Benz HERMES 1 allows an attacker with direct physical access to device hardware to obtain cellular modem information...

CVE-2019-19557

A misconfiguration in the debug interface in Mercedes-Benz HERMES 1 allows an attacker with direct physical access to device hardware to obtain cellular modem information...