69 matches found
CVE-2024-23353 Buffer Over-read in Multi Mode Call Processor
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESMIEI...
CVE-2024-23352
CVE-2024-23352 concerns a transient DoS in Qualcomm closed‑source components due to a loop in the Multi Mode Call Processor. The issue manifests when NAS receives ODAC criteria of length 1 and type 1 during registration (OTA). Public documents consistently cite the description, but no concrete pa...
CVE-2024-23352 Loop with Unreachable Exit Condition (`Infinite Loop`) in Multi Mode Call Processor
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA...
CVE-2024-23352 Loop with Unreachable Exit Condition (`Infinite Loop`) in Multi Mode Call Processor
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA...
CVE-2024-23350
CVE-2024-23350 relates to a permanent Denial of Service in Qualcomm Snapdragon software, triggered when the DL NAS transport processes multiple payloads: one payload with a SOR container failing its integrity check and another LPP where the UE must send a status message. Root cause cited as an un...
CVE-2024-23350 Reachable Assertion in Multi Mode Call Processor
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network...
CVE-2024-23350 Reachable Assertion in Multi Mode Call Processor
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets, which arises from an infinite loop vulnerability contained in the Multi Mode Call Processor module...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets, which originated when the Multi Mode Call Processor module contained an out-of-bounds read vulnerability...
CVE-2023-43551 Improper Authentication in Multi-Mode Call Processor
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command...
CVE-2023-43551 Improper Authentication in Multi-Mode Call Processor
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command...
CVE-2023-33101 Incorrect Type Conversion or Cast in Multi-Mode Call Processor
Transient DOS while processing DL NAS TRANSPORT message with payload length 0...
CVE-2023-33101 Incorrect Type Conversion or Cast in Multi-Mode Call Processor
Transient DOS while processing DL NAS TRANSPORT message with payload length 0...
CVE-2023-33100 Improper input validation in Multi-Mode Call Processor
Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification...
CVE-2023-33100 Improper input validation in Multi-Mode Call Processor
Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification...
CVE-2023-33099 Improper Input Validation in Multi-Mode Call Processor
Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR...
CVE-2023-33099 Improper Input Validation in Multi-Mode Call Processor
Transient DOS while processing SMS container of non-standard size received in DL NAS transport in NR...
CVE-2023-33104 Improper input Validation in Multi-Mode Call Processor
Transient DOS while processing PDU Release command with a parameter PDU ID out of range...
CVE-2023-33104 Improper input Validation in Multi-Mode Call Processor
Transient DOS while processing PDU Release command with a parameter PDU ID out of range...
CVE-2023-33103 Improper Input Validation in Multi-Mode Call Processor
Transient DOS while processing CAG info IE received from NW...