Intel Puma 5, 6 and 7 Series Denial of Service Vulnerability

Intel Puma 5, 6, and 7 Series are all different families of modem chip products from the U.S. company Intel. A security vulnerability exists in the firmware of the Intel Puma 5, 6, and 7 Series. The vulnerability can be exploited by an attacker to cause a denial of service resource exhaustion or...

CVE-2016-9496

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, lacks authentication. An unauthenticated user may send an HTTP GET request to http://ip/com/gatewayreset or http://ip/cgi/reboot.bin to cause the modem to reboot...

CVE-2016-9497

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, is vulnerable to an authentication bypass using an alternate path or channel. By default, port 1953 is accessible via telnet and does not require authentication. An unauthenticated remote user can access many...

Design/Logic Flaw

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, lacks authentication. An unauthenticated user may send an HTTP GET request to http://ip/com/gatewayreset or http://ip/cgi/reboot.bin to cause the modem to reboot...

CVE-2016-9496 Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, lacks authentication to access certain pages

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, lacks authentication. An unauthenticated user may send an HTTP GET request to http://ip/com/gatewayreset or http://ip/cgi/reboot.bin to cause the modem to reboot...

CVE-2016-9497

Affected devices: Hughes high‑performance broadband satellite modems (HN7740S, DW7000, HN7000S/SM). Vulnerability: CVE-2016-9497 enables authentication bypass via an alternate path/channel; port 1953 Telnet is accessible without authentication, allowing an unauthenticated remote user to run admin...

CVE-2018-5891

While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipcdataHandle is no longer available. Consequently, the DPL thread frees the internal memory for dataDHandle but the local variable pointer is not updated which can lead to a Use After Free condition in...

CVE-2018-11259

Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the modem boots and...

Design/Logic Flaw

While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipcdataHandle is no longer available. Consequently, the DPL thread frees the internal memory for dataDHandle but the local variable pointer is not updated which can lead to a Use After Free condition in...

CVE-2018-11259

Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the modem boots and...

CVE-2018-5891

While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipcdataHandle is no longer available. Consequently, the DPL thread frees the internal memory for dataDHandle but the local variable pointer is not updated which can lead to a Use After Free condition in...

The vulnerability of the Qualcomm Modem component in the Android operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Qualcomm Modem component in the Android operating system is related to buffer overflows during IMS calls. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

CVE-2018-11259

Due to Improper Access Control of NAND-based EFS in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, From fastboot on a NAND-based device, the EFS partition can be erased. Apps processor then has non-secure world full read/write access to the partition until the modem boots and...

[SECURITY] Fedora 27 Update: ppp-2.4.7-14.fc27

The ppp package contains the PPP Point-to-Point Protocol daemon and documentation for PPP support. The PPP protocol provides a method for transmitting datagrams over serial point-to-point links. PPP is usually used to dial in to an ISP Internet Service Provider or other organization over a modem...

Google Android Qualcomm Modem Driver Buffer Override Vulnerability

Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google Inc. and the Open Handheld Alliance OHA.Qualcomm Modem driver is one of the modem drivers. Qualcomm Modem driver is one of the modem drivers. A security...

UTStar WA3002G4 Authentication Bypass Vulnerability

The UTStar WA3002G4 is a modem from UTStarcom USA. An authentication bypass vulnerability exists in the UTStar WA3002G4. An attacker can use this vulnerability to directly access administrator settings and obtain plaintext credentials from the HTML source...

Intel 2G Modem

1. EXECUTIVE SUMMARY CVSS v3 8.2 ATTENTION : Exploitable remotely Vendor : Intel Equipment : Intel 2G Modem Vulnerability : Buffer Overflow 2. RISK EVALUATION Successful exploitation of this buffer overflow vulnerability may allow remote code execution. The vulnerability affects Intel 2G modem...

Google Android Wireless Data Service Module Buffer Overflow Vulnerability

Android is a Linux-based open-source operating system jointly developed by Google and the Open Handheld Alliance OHA in the U.S. The Wireless Data Service WDS module is one of the WDS modules, and Qualcomm MDM9650 and others are Qualcomm's central processing unit CPU products for different...

CVE-2015-9152

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile IPQ4019, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 800, SD 810, SD 820, SD 820A, SD 835, and...

Intel® 2G Firmware Update for Modems using ETWS

Summary: Buffer overflow in ETWS processing module Intel® XMM71xx, XMM72xx, XMM73xx, XMM74xx and Sofia 3G/R allows remote attacker to potentially execute arbitrary code via an adjacent network. Description: In late February 2018, external security researchers identified and disclosed to Intel a...