CVE-2019-20566

CVE-2019-20566 concerns Samsung mobile devices with any software prior to September 2019 on SMP1300 Exynos modem chipsets, where attackers can trigger stack corruption in the Shannon modem through a crafted RP-Originator/Destination address. The issue is associated with the Shannon modem’s handli...

CVE-2020-10835

An issue was discovered on Samsung mobile devices with any before February 2020 for Exynos modem chipsets software. There is a buffer overflow in baseband CP message decoding. The Samsung IDs are SVE-2019-15816 and SVE-2019-15817 February 2020...

Voo branded NETGEAR CG3700b Cross-Site Request Forgery Vulnerability

The NETGEAR CG3700b is a cable modem and router from NETGEAR. A cross-site request forgery vulnerability exists in the Voo branded NETGEAR CG3700b, which arises from a network system or product that does not adequately validate the origin or authenticity of data, and can be exploited by an attack...

Unspecified Vulnerability in Technicolor TC7337NET

Technicolor TC7337NET is a modem from the French company Technicolor. A security vulnerability exists in Technicolor TC7337NET version 08.89.17.23.03, which can be exploited by an attacker to discover passwords by sniffing the "Authorization:Basic" HTTP header in the network...

Fedora: Security Advisory for ppp (FEDORA-2020-571091c70b)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Data Modem Buffer Overflow Vulnerability in Multiple Qualcomm Products

Qualcomm MDM9206, etc. are products of Qualcomm Incorporated, U.S.A. The MDM9206 is a central processing unit CPU product.The SDX24 is a modem.The SDA660 is a central processing unit CPU product. A buffer overflow vulnerability exists in Data Modem in multiple Qualcomm products.The vulnerability...

Data Modem Buffer Overflow Vulnerability in Multiple Qualcomm Products (CNVD-2020-20199)

The Qualcomm MDM9206 and others are products of Qualcomm Incorporated, U.S.A. The MDM9206 is a central processing unit CPU product.The SDX24 is a modem.The APQ8017 is a central processing unit CPU product. A buffer overflow vulnerability exists in Data Modem in multiple Qualcomm products, which c...

Input Validation Error Vulnerability in Multiple Qualcomm Products (CNVD-2020-20201)

The Qualcomm MDM9206 and others are products of Qualcomm Incorporated, U.S.A. The MDM9206 is a central processing unit CPU product.The SDX24 is a modem.The APQ8017 is a central processing unit CPU product. An input validation error vulnerability exists in Data Modem in multiple Qualcomm products,...

Data Modem Buffer Overflow Vulnerability in Multiple Qualcomm Products (CNVD-2020-20200)

The Qualcomm MDM9206 and others are products of Qualcomm Incorporated, U.S.A. The MDM9206 is a central processing unit CPU product.The SDX24 is a modem.The APQ8017 is a central processing unit CPU product. A buffer overflow vulnerability exists in Data Modem in multiple Qualcomm products, which i...

Buffer Overflow Vulnerability in Multiple Qualcomm Products (CNVD-2020-20203)

The Qualcomm MDM9206 and others are products of Qualcomm Incorporated, U.S.A. The MDM9206 is a central processing unit CPU product.The SDX24 is a modem.The APQ8017 is a central processing unit CPU product. A buffer overflow vulnerability exists in the Multi-Mode Call Processor in multiple Qualcom...

Buffer Overflow Vulnerability in Multiple Qualcomm Products (CNVD-2020-20197)

The Qualcomm MDM9206 and others are products of Qualcomm Incorporated, U.S.A. The MDM9206 is a central processing unit CPU product.The SDX24 is a modem.The QCS605 is a central processing unit CPU product. A buffer overflow vulnerability exists in Data Modem in multiple Qualcomm products, which ca...

Qualcomm MDM9206 and MDM9607 Input Validation Error Vulnerability

The Qualcomm MDM9206 and MDM9607 are both central processing unit CPU products from Qualcomm Incorporated. An input validation error vulnerability exists in the Kernel in the Qualcomm MDM9206 and MDM9607. The vulnerability arises from a networked system or product that does not properly validate...

Multiple Qualcomm Products Input Validation Error Vulnerability (CNVD-2020-09961)

Qualcomm SDX24 and others are products of Qualcomm Incorporated, U.S.A. The SDX24 is a modem.The QCS605 is a central processing unit CPU product.The SDM439 is a central processing unit CPU product.The QCS605 is a central processing unit CPU product.The QCS605 is a central processing unit CPU...

CVE-2019-10548

While trying to obtain datad ipc handle during DPL initialization, Heap use-after-free issue can occur if modem SSR occurs at same time in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Wearables in APQ8009,...

Design/Logic Flaw

While trying to obtain datad ipc handle during DPL initialization, Heap use-after-free issue can occur if modem SSR occurs at same time in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Wearables in APQ8009,...

CVE-2019-10548

CVE-2019-10548 is a heap use-after-free in the datad IPC handle during DPL initialization that can occur if modem SSR happens concurrently, reported for Snapdragon Auto/Compute/IoT/Wearables platforms (list of affected SoCs). The issue is documented with CVSS v2/v3 scores (7.2/7.8, HIGH) and LOCA...

CVE-2019-10548

While trying to obtain datad ipc handle during DPL initialization, Heap use-after-free issue can occur if modem SSR occurs at same time in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Wearables in APQ8009,...

Sagemcom [email protected] 3890 (50_10_19-T1) Cable Modem - Cable Haunt Remote Code Execution Exploit

// EDB Note: Download https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47936.zip function buf2hexbuffer // buffer is an ArrayBuffer return Array.prototype.map.callnew Uint8Arraybuffer, x = '00' + x.toString16.slice-2.join''; function insertAtarr, index, toInsert...

Sagemcom F@ST 3890 (50_10_19-T1) Cable Modem - Cable Haunt Remote Code Execution

Sagemcom F@ST 3890 501019-T1 Cable Modem - Cable Haunt Remote Code Execution // EDB Note: Download https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/47936.zip function buf2hexbuffer // buffer is an ArrayBuffer return Array.prototype.map.callnew Uint8Arraybuffer, x...

Sagemcom F@ST 3890 (50_10_19-T1) Cable Modem - 'Cable Haunt' Remote Code Execution

// EDB Note: Download https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/47936.zip function buf2hexbuffer // buffer is an ArrayBuffer return Array.prototype.map.callnew Uint8Arraybuffer, x = '00' + x.toString16.slice-2.join''; function insertAtarr, index, toInsert...