16 matches found
CVE-2025-47383
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE...
CVE-2025-47383
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE...
CVE-2025-47383 Missing Cryptographic Step in Data Modem
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE...
EUVD-2025-208190
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE...
CVE-2025-47383
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE...
CVE-2025-47383 Missing Cryptographic Step in Data Modem
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE...
VWAttacker: a Systematic Security Testing Framework for Voice over WiFi User Equipments
We present VWAttacker, the first systematic testing framework for analyzing the security of Voice over WiFi VoWiFi User Equipment UE implementations. VWAttacker includes a complete VoWiFi network testbed that communicates with Commercial-Off-The-Shelf COTS UEs based on a simple interface to test...
CVE-2024-20069
In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01286330; Iss...
CVE-2025-20958
Improper verification of intent by broadcast receiver in UnifiedWFC prior to SMR May-2025 Release 1 allows local attackers to manipulate VoWiFi related behaviors...
SAMSUNG SMR 安全漏洞
SAMSUNG SMR is a system patch package from the South Korean company Samsung SAMSUNG. It provides patches for Samsung cell phone applications. SAMSUNG SMR suffers from a security vulnerability that stems from insufficient validation of intent by the broadcast receiver, which could lead to...
PT-2024-18553 · Modem · Modem
Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: The issue is related to a missing DH downgrade check during the VoWiFi IKE, which could lead to the selection of a less-secure algorithm. This might result in remote information disclosure...
UNISOC Chipsets Security Vulnerability
UNISOC Chipsets is a chipset from China's Unisplendour UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a possible lack of privilege checking in the vowifi service...
UNISOC Chipsets Security Vulnerability
UNISOC Chipsets is a chipset from China's Unisplendour UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a possible lack of privilege checking in the vowifi service...
UNISOC Chipsets Security Vulnerability
UNISOC Chipsets is a chipset from China's Unisplendour UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a possible lack of privilege checking in the vowifi service...
UNISOC Chipsets Security Vulnerability
UNISOC Chipsets is a chipset from China's Unisplendour UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a possible lack of privilege checking in the vowifi service...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei China. A vulnerability exists in the Huawei HarmonyOS VoWifi component, which provides a microkernel-based, full-scenario distributed operating system. An attacker could exploit this vulnerability to potentially compromise confidentiality...