Lucene search
K

299 matches found

Positive Technologies
Positive Technologies
added 2024/02/29 12:0 a.m.3 views

PT-2024-38412

Name of the Vulnerable Software and Affected Versions oFono affected versions not specified Description This issue allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit...

8.1CVSS7AI score0.00947EPSS
Exploits1References60
Positive Technologies
Positive Technologies
added 2024/02/29 12:0 a.m.3 views

PT-2024-38410

Name of the Vulnerable Software and Affected Versions oFono affected versions not specified Description This issue allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit...

7.8CVSS7AI score0.00297EPSS
Exploits0References60
Positive Technologies
Positive Technologies
added 2024/02/29 12:0 a.m.4 views

PT-2024-38409

Name of the Vulnerable Software and Affected Versions oFono affected versions not specified Description This issue allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit...

7.8CVSS7AI score0.00297EPSS
Exploits0References60
Positive Technologies
Positive Technologies
added 2024/02/02 12:0 a.m.6 views

PT-2024-38404

Name of the Vulnerable Software and Affected Versions oFono affected versions not specified Description This issue allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit...

7.8CVSS7.1AI score0.00297EPSS
Exploits0References61
BDU FSTEC
BDU FSTEC
added 2023/12/26 12:0 a.m.7 views

The vulnerability of the decode_submit_report() function in the OFono mobile phone stack allows a violator to execute arbitrary code.

The vulnerability of the decodesubmitreport function in the OFono mobile phone stack is related to the execution of an operation outside the buffer in memory when sending SMS messages in PDU format. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.1CVSS8.2AI score0.01149EPSS
Exploits1References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2023/12/25 12:0 a.m.10 views

The vulnerability of the sms_decode_address_field() function in the OFono mobile phone stack allows a hacker to execute arbitrary code.

The vulnerability of the smsdecodeaddressfield function in the OFono mobile phone stack is related to the execution of operations outside the buffer in memory when sending SMS messages in PDU format. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

8.1CVSS8.2AI score0.01006EPSS
Exploits0References8Affected Software3
SUSE CVE
SUSE CVE
added 2023/12/22 2:20 a.m.6 views

SUSE CVE-2023-2794

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodedeliver function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound check f...

8.1CVSS6.9AI score0.0124EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/12/22 2:19 a.m.3 views

SUSE CVE-2023-4233

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the smsdecodeaddressfield function during the SMS PDU decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS...

8.1CVSS6.9AI score0.01006EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/12/22 2:19 a.m.5 views

SUSE CVE-2023-4234

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodesubmitreport function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound...

8.1CVSS6.9AI score0.01149EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/12/22 2:19 a.m.5 views

SUSE CVE-2023-4232

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodestatusreport function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound...

8.1CVSS6.9AI score0.00947EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/12/22 2:19 a.m.6 views

SUSE CVE-2023-4235

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodedeliverreport function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound...

8.1CVSS6.9AI score0.00936EPSS
Exploits1References3
Zero Day Initiative
Zero Day Initiative
added 2023/12/20 12:0 a.m.22 views

oFono SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of oFono. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of SMS PDUs. The issue results from the lack of proper validation of the length of...

8.1CVSS7.6AI score0.00947EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2023/12/20 12:0 a.m.19 views

oFono SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of oFono. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of SMS PDUs. The issue results from the lack of proper validation of the length of...

8.1CVSS7.6AI score0.01006EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/20 12:0 a.m.3 views

PT-2023-9381

Name of the Vulnerable Software and Affected Versions oFono affected versions not specified Description A flaw in the oFono interface for working with mobile connectivity is related to a buffer overflow in the decode deliver function during SMS decoding. This issue can be exploited by a remote...

8.1CVSS7.4AI score0.0124EPSS
Exploits1References66
Zero Day Initiative
Zero Day Initiative
added 2023/12/20 12:0 a.m.15 views

oFono SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of oFono. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of SMS PDUs. The issue results from the lack of proper validation of the length of...

8.1CVSS7.6AI score0.0124EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2023/12/20 12:0 a.m.23 views

oFono SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of oFono. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of SMS PDUs. The issue results from the lack of proper validation of the length of...

8.1CVSS7.6AI score0.01149EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/05/10 12:0 a.m.2 views

PT-2023-9157

Name of the Vulnerable Software and Affected Versions ofono affected versions not specified Description A flaw was found in ofono, an Open Source Telephony on Linux, where a stack overflow bug is triggered within the decode deliver report function during SMS decoding. This issue is related to the...

8.1CVSS7.1AI score0.00936EPSS
Exploits1References56
Positive Technologies
Positive Technologies
added 2023/05/10 12:0 a.m.4 views

PT-2023-7966

Name of the Vulnerable Software and Affected Versions ofono affected versions not specified Description A flaw was found in ofono, an Open Source Telephony on Linux, where a stack overflow bug is triggered within the sms decode address field function during the SMS PDU decoding. This issue can be...

8.1CVSS7.4AI score0.01006EPSS
Exploits0References63
Positive Technologies
Positive Technologies
added 2023/05/10 12:0 a.m.2 views

PT-2023-9373

Name of the Vulnerable Software and Affected Versions ofono affected versions not specified Description A flaw was found in ofono, an Open Source Telephony on Linux, where a stack overflow bug is triggered within the decode status report function during SMS decoding. The attack scenario is assume...

8.1CVSS7.1AI score0.00947EPSS
Exploits1References60
Rows per page
Query Builder