CVE-2025-71251

In IMS, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed...

PT-2026-37333

In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed...

CVE-2025-20725

In ims service, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for...

CVE-2025-21027

The vulnerability CVE-2025-21027 affects Samsung Mobile’s ImsService, where improper verification of an intent by a broadcast receiver allows a local attacker to temporarily disable the SIM on devices running versions prior to SMR Sep-2025 Release 1. Root cause: inadequate validation in the ImsSe...

CVE-2025-21027

Improper verification of intent by broadcast receiver in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to temporarily disable the SIM...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a potential information disclosure when receiving invalid RTCP packets during a VoLTE/VoWiFi IMS call...

Italtel i-MCS NFV 安全漏洞

Italtel i-MCS NFV is an IMS/NGN core and border suite from Italtel Italy. A security vulnerability exists in Italtel i-MCS NFV version 12.1.0-20211215, which stems from stored cross-site scripting that may occur via POST parameters...

CVE-2024-20897

Use of implicit intent for sensitive communication in FCM function in IMS service prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information...

CVE-2024-20899

Use of implicit intent for sensitive communication in RCS function in IMS service prior to SMR Jul-2024 Release 1 allows local attackers to get sensitive information...

SAMSUNG Mobile devices security vulnerability

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from Samsung South Korea. A security vulnerability exists in SAMSUNG Mobile devices prior to SMR Jul-2024 Release 1, which stems from an issue in the RCS method of the IMS service that uses implicit...

PT-2024-18812 · Ims · Ims

Name of the Vulnerable Software and Affected Versions: IMS service versions prior to SMR Jul-2024 Release 1 Description: The issue concerns the use of implicit intent for sensitive communication in the RCS function of the IMS service, allowing local attackers to obtain sensitive information...

SAMSUNG Mobile devices security vulnerability

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from Samsung South Korea. A security vulnerability exists in SAMSUNG Mobile devices prior to SMR Jul-2024 Release 1, which stems from an issue in the FCM method of the IMS service that uses implicit...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from a packet name validation bypass vulnerability in the HwIms module...

UNISOC Chipsets Security Vulnerability

UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a lack of privilege checking in the ims service, with a possible method to write a privilege usage log of an application...

CVE-2023-49699

Memory Corruption in IMS while calling VoLTE Streamingmedia Interface...

PT-2023-31301 · Asr +1 · Falcon +2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns a memory corruption problem in the IMS IP Multimedia Subsystem when calling the VoLTE Voice over LTE Streaming media Interface. No...

UNISOC Chipsets Security Vulnerability

UNISOC Chipsets is a chipset from China's Unisplendour UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a possible lack of privilege checking in the ims service module...

CVE-2022-38700 multimedia subsystem has a permission bypass vulnerability. LAN attackers can bypass permission control and get control of camera service.

OpenHarmony-v3.1.1 and prior versions have a permission bypass vulnerability. LAN attackers can bypass permission control and get control of camera service...

CVE-2022-22104

Memory corruption in multimedia due to improper check on the messages received. in Snapdragon Auto...

PT-2022-14301 · Mediatek +1 · Mt6580 +1

Name of the Vulnerable Software and Affected Versions: No specific software name or versions are mentioned, so the information cannot be accurately provided. Description: The issue is related to a possible AT command injection in the ims service due to a missing permission check. This could lead ...