CVE-2026-35330

Integer Underflow When Handling EAP-SIM/AKA Attributes...

UBUNTU-CVE-2026-35330

Integer Underflow When Handling EAP-SIM/AKA Attributes...

CVE-2025-59440

An issue was discovered in USIM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Improper handling of SIM card proactive commands leads to a...

CVE-2025-59440

CVE-2025-59440 — Denial of Service in USIM handling Affected hardware: Samsung mobile and wearable processors (USIM) and associated modems (examples listed in the description: Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modems 5123, 5...

PT-2026-30692

An issue was discovered in USIM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Improper handling of SIM card proactive commands leads to a...

EUVD-2025-26509

Malicious code in bioql PyPI...

U.S. Secret Service Seizes 300 SIM Servers, 100K Cards Threatening U.S. Officials Near UN

The U.S. Secret Service on Tuesday said it took down a network of electronic devices located across the New York tri-state area that were used to threaten U.S. government officials and posed an imminent threat to national security. "This protective intelligence investigation led to the discovery ...

CVE-2025-21027

Improper verification of intent by broadcast receiver in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to temporarily disable the SIM...

CVE-2025-21027

Improper verification of intent by broadcast receiver in ImsService prior to SMR Sep-2025 Release 1 allows local attackers to temporarily disable the SIM...

CVE-2025-21027

The vulnerability CVE-2025-21027 affects Samsung Mobile’s ImsService, where improper verification of an intent by a broadcast receiver allows a local attacker to temporarily disable the SIM on devices running versions prior to SMR Sep-2025 Release 1. Root cause: inadequate validation in the ImsSe...

SIMulator: SIM Tracing on a (Pico-)Budget

SIM tracing -- the ability to inspect, modify, and relay communication between a SIM card and modem -- has become a significant technique in cellular network research. It enables essential security- and development-related applications such as fuzzing communication interfaces, extracting session...

CVE-2023-21373

In Telephony, there is a possible way for a guest user to change the preferred SIM due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2024-10740 · One2Track · One2Track

Name of the Vulnerable Software and Affected Versions: One2Track version 2019-12-08 Description: An issue was discovered where any SIM card used with the device cannot have a PIN configured. If a PIN is configured, the device produces a "Remove PIN and restart!" message and cannot be used, making...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a memory corruption when processing a request to update a SIM PB record...

SAMSUNG Mobile Processor and Wearable Processor Security Vulnerability

SAMSUNG Mobile Processor and SAMSUNG Wearable Processor are both products of the South Korean company SAMSUNG.SAMSUNG Mobile Processor is a series of mobile processors.SAMSUNG Wearable Processor is a series of wearable processors. SAMSUNG Mobile Processor is a series of mobile processors. A...

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated. A security vulnerability exists in Qualcomm Chipsets, which is caused by a memory corruption in the wireless interface layer when sending an SMS or writing an SMS to a SIM...

PT-2023-18297 · Qualcomm · Qualcomm Chipsets

Name of the Vulnerable Software and Affected Versions: Qualcomm Chipsets affected versions not specified Description: The issue is related to memory corruption in the Radio Interface Layer, which occurs when sending an SMS or writing an SMS to the SIM. This can potentially lead to code execution...

UNISOC Chipsets Security Vulnerability

UNISOC Chipsets is a chipset from China's Zilight Zhanrui UNISOC. A security vulnerability exists in UNISOC Chipsets, which stems from a lack of privilege checking in the sim service, leading to the disclosure of local information...

CVE-2023-21373

In Telephony, there is a possible way for a guest user to change the preferred SIM due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2023-18049 · Google · Android

Name of the Vulnerable Software and Affected Versions: MmsProvider.java affected versions not specified Description: The issue is related to a path traversal error in the update of MmsProvider.java, which could lead to a change in directory permissions. This may result in a local denial of servic...