Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:40 a.m.9 views

CVE-2022-26942

The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted execution environment TEE modules. Two modules are used, one responsible for KVL key management and the other for TETRA cryptographic functionality. In both modules, an adversary with non-secure superviso...

8.2CVSS8.5AI score0.00197EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:40 a.m.9 views

CVE-2022-26943

The Motorola MTM5000 series firmwares generate TETRA authentication challenges using a PRNG using a tick count register as its sole entropy source. Low boottime entropy and limited re-seeding of the pool renders the authentication challenge vulnerable to two attacks. First, due to the limited...

8.8CVSS6.9AI score0.00314EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-31486

Malicious code in bioql PyPI...

9.6CVSS8.6AI score0.00327EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-31488

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00314EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-31487

Malicious code in bioql PyPI...

8.2CVSS8.2AI score0.00197EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-32308

Malicious code in bioql PyPI...

8.2CVSS8.1AI score0.00179EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:36 p.m.23 views

CVE-2022-27813

Motorola MTM5000 series firmwares lack properly configured memory protection of pages shared between the OMAP-L138 ARM and DSP cores. The SoC provides two memory protection units, MPU1 and MPU2, to enforce the trust boundary between the two cores. Since both units are left unconfigured by the...

8.2CVSS7.5AI score0.00179EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/10/19 10:15 a.m.3 views

CVE-2022-27813

Motorola MTM5000 series firmwares lack properly configured memory protection of pages shared between the OMAP-L138 ARM and DSP cores. The SoC provides two memory protection units, MPU1 and MPU2, to enforce the trust boundary between the two cores. Since both units are left unconfigured by the...

8.2CVSS7.5AI score0.00179EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/10/19 10:15 a.m.3 views

CVE-2022-26943

The Motorola MTM5000 series firmwares generate TETRA authentication challenges using a PRNG using a tick count register as its sole entropy source. Low boottime entropy and limited re-seeding of the pool renders the authentication challenge vulnerable to two attacks. First, due to the limited...

8.8CVSS5.9AI score0.00314EPSS
Exploits0References2
NVD
NVD
added 2023/10/19 10:15 a.m.33 views

CVE-2022-26942

The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted execution environment TEE modules. Two modules are used, one responsible for KVL key management and the other for TETRA cryptographic functionality. In both modules, an adversary with non-secure superviso...

8.2CVSS8.5AI score0.00197EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/10/19 10:15 a.m.3 views

CVE-2022-26941

A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for the AT+CTGL command. An attacker-controllable string is improperly handled, allowing for a write-anything-anywhere scenario. This can be leveraged to obtain arbitrary code execution inside the tedsapp...

9.6CVSS6.4AI score0.00327EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/10/19 10:15 a.m.4 views

CVE-2022-26942

The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted execution environment TEE modules. Two modules are used, one responsible for KVL key management and the other for TETRA cryptographic functionality. In both modules, an adversary with non-secure superviso...

8.2CVSS6.3AI score0.00197EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/10/19 9:35 a.m.28 views

CVE-2022-26941 Format string vulnerability in AT+CTGL command in Motorola MTM5000

A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for the AT+CTGL command. An attacker-controllable string is improperly handled, allowing for a write-anything-anywhere scenario. This can be leveraged to obtain arbitrary code execution inside the tedsapp...

9.6CVSS9.7AI score0.00327EPSS
Exploits0References1
CVE
CVE
added 2023/10/19 9:35 a.m.151 views

CVE-2022-26941

CVE-2022-26941 affects Motorola MTM5000 series firmware; the AT+CTGL command handler contains a format-string vulnerability where an attacker-controlled string can be misinterpreted, enabling a write-anything-anywhere condition and arbitrary code execution inside the teds_app binary that runs wit...

9.6CVSS9.3AI score0.00327EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/19 9:35 a.m.199 views

CVE-2022-26941 Format string vulnerability in AT+CTGL command in Motorola MTM5000

A format string vulnerability exists in Motorola MTM5000 series firmware AT command handler for the AT+CTGL command. An attacker-controllable string is improperly handled, allowing for a write-anything-anywhere scenario. This can be leveraged to obtain arbitrary code execution inside the tedsapp...

9.6CVSS7.8AI score0.00327EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/19 9:35 a.m.29 views

CVE-2022-26942 Multiple missing pointer validation checks in trusted execution module in Motorola MTM5000

The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted execution environment TEE modules. Two modules are used, one responsible for KVL key management and the other for TETRA cryptographic functionality. In both modules, an adversary with non-secure superviso...

8.2CVSS8.7AI score0.00197EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/19 9:35 a.m.148 views

CVE-2022-26942 Multiple missing pointer validation checks in trusted execution module in Motorola MTM5000

The Motorola MTM5000 series firmwares lack pointer validation on arguments passed to trusted execution environment TEE modules. Two modules are used, one responsible for KVL key management and the other for TETRA cryptographic functionality. In both modules, an adversary with non-secure superviso...

8.2CVSS8.5AI score0.00197EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/19 9:34 a.m.118 views

CVE-2022-26943 Weak PRNG entropy source used for authentication challenge generation in Motorola MTM5000

The Motorola MTM5000 series firmwares generate TETRA authentication challenges using a PRNG using a tick count register as its sole entropy source. Low boottime entropy and limited re-seeding of the pool renders the authentication challenge vulnerable to two attacks. First, due to the limited...

8.8CVSS8.8AI score0.00314EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/10/19 12:0 a.m.4 views

Motorola MTM5000 Security Feature Issue Vulnerability

The Motorola MTM5000 is a mobile radio from Motorola, USA. The Motorola MTM5000 suffers from a security vulnerability that stems from the use of PRNG to generate TETRA authentication polls and the use of the tick count register as its only source of entropy, which can be exploited by an attacker ...

8.8CVSS6.9AI score0.00314EPSS
Exploits0References2
Rows per page
Query Builder