PT-2023-18049 · Google · Android

Name of the Vulnerable Software and Affected Versions: MmsProvider.java affected versions not specified Description: The issue is related to a path traversal error in the update of MmsProvider.java, which could lead to a change in directory permissions. This may result in a local denial of servic...

Qualcomm Chipsets 资源管理错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from a double release issue when parsing PKCS15 sim files, resulting in memory corruption in the Modem...

PT-2023-18298 · Qualcomm · Snapdragon +50

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns a memory corruption problem in the Data Network Stack & Connectivity component when a SIM card is detected on the telephony system...

ALPINE-CVE-2022-41860

In freeradius, when an EAP-SIM supplicant sends an unknown SIM option, the server will try to look that option up in the internal dictionaries. This lookup will fail, but the SIM code will not check for that failure. Instead, it will dereference a NULL pointer, and cause the server to crash...

Samsung mobile 日志信息泄露漏洞

Samsung Find My Mobile is an application to find a cell phone by the South Korean company Samsung Samsung. An information disclosure vulnerability exists in Samsung Find My Mobile prior to version 7.2.24.12, FmmExtraOperation. A local attacker with log access could exploit the vulnerability to...

Samsung mobile 安全漏洞

Samsung mobile is a cell phone from Samsung, South Korea. Samsung mobile low-battery dumpstate log is vulnerable to information disclosure due to a lack of protection of sensitive information in the low-battery dumpstate log. A local attacker could use this vulnerability to obtain SIM card...

Wokka Lokka Q50 信息泄露漏洞

The Wokka Lokka Q50 is a children's smartwatch from Wokka Lokka USA. The Wokka Lokka Q50 suffers from an information disclosure vulnerability that originates from allowing a remote attacker knowing the SIM phone number and passcode to listen to the device's surroundings via callbacks in SMS...

TK-Star Q90 Junior GPS horloge security vulnerability

TK-Star Q90 Junior GPS horloge is a Gps location tracker from TK-Star, China. A security vulnerability exists in the TK-Star Q90 Junior GPS horloge 3.1042.9.8656 devices, which can be exploited by an attacker to more easily use a SIM card by stealing the device...

Samsung Mobile Device Input Validation Error Vulnerability (CNVD-2020-29836)

Android is a free and open source operating system from Google based on the Linux kernel without GNU components. An input validation error vulnerability exists in Samsung mobile devices that originates from a network system or product that does not properly validate incoming data and can be...

Unspecified Vulnerability in Samsung Mobile Devices (CNVD-2020-33786)

Android is a free and open source operating system from Google based on the Linux kernel without GNU components. An unspecified vulnerability exists in Samsung mobile devices, which can be exploited by attackers to bypass FRP with the help of a SIM card...

The vulnerability of the Qualcomm User Identity Module component in the Android operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Qualcomm User Identity Module component in the Android operating system arises from buffer overflows during the processing of responses from SIM cards. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility o...

The vulnerability of the USIM responder in the Android operating system from the CAF repository allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Android operating system from the CAF repository exists due to insufficient checking of input data. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information during the processing of...

Google Android Qualcomm Component Unauthorized Operation Vulnerability (CNVD-2017-26834)

Android is a Linux-based open-source operating system developed by Google and the Open Handheld Alliance OHA, and Qualcomm closed-source components are among the closed-source components developed by Qualcomm. An input validation vulnerability exists in the USIM response handling process of the...

The vulnerability of the Android operating system, which allows a hacker to intercept or simulate SIM STK commands

The vulnerability of the SIM Toolkit component in the Android operating system is related to deficiencies in access control for files. Exploiting this vulnerability allows a malicious actor, operating remotely, to intercept or simulate SIM STK commands using a specially crafted application...