Lucene search
K

16 matches found

Packet Storm News
Packet Storm News
added 2026/04/27 12:0 a.m.6 views

From Spoofing to Trust: Emergency Alerts Spoofing Testbed and Cross-Cell Verification

Public warning systems PWS in cellular networks enable authorities to broadcast emergency alerts to all mobile phones in a geographic region in the event of threats such as earthquakes or severe weather. If an attacker can imitate these alerts and transmit a forged warning containing fake news or...

5.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 10:18 a.m.6 views

CVE-2019-18659

The Wireless Emergency Alerts WEA protocol allows remote attackers to spoof a Presidential Alert because cryptographic authentication is not used, as demonstrated by MessageIdentifier 4370 in LTE System Information Block 12 aka SIB12. NOTE: testing inside an RF-isolated shield box suggested that...

5.3CVSS6.8AI score0.00982EPSS
Exploits0References1
Malwarebytes
Malwarebytes
added 2025/11/27 2:40 p.m.5 views

Millions at risk after nationwide CodeRED alert system outage and data breach

A nationwide cyberattack against the OnSolve CodeRED emergency notifications system has prompted cities and counties across the US to warn residents and advise them to change their passwords. CodeRED is used by local governments to deliver fast, targeted alerts during severe weather, evacuations,...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-1938

Malware in sbrugna...

5.5CVSS5.6AI score0.00143EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2019-8376

Malware in sbrugna...

5.3CVSS5.6AI score0.00982EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:7 p.m.7 views

CVE-2020-0437

In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.5CVSS7.3AI score0.00143EPSS
Exploits0References1
OSV
OSV
added 2020/11/10 1:15 p.m.3 views

CVE-2020-0437

In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.5CVSS5.9AI score0.00143EPSS
Exploits0References1
NVD
NVD
added 2020/11/10 1:15 p.m.22 views

CVE-2020-0437

In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.5CVSS5.4AI score0.00143EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2020/11/10 1:15 p.m.2 views

CVE-2020-0437

In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.5CVSS5.6AI score0.00143EPSS
Exploits0References2
Prion
Prion
added 2020/11/10 1:15 p.m.15 views

Design/Logic Flaw

In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

2.1CVSS5.7AI score0.00143EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/11/01 12:0 a.m.28 views

ASB-A-162741784

In CellBroadcastReceiver's intent handlers, there is a possible denial of service due to a missing permission check. This could lead to local denial of service of emergency alerts with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.4AI score0.00143EPSS
Exploits0References2
NVD
NVD
added 2019/11/02 1:15 a.m.18 views

CVE-2019-18659

The Wireless Emergency Alerts WEA protocol allows remote attackers to spoof a Presidential Alert because cryptographic authentication is not used, as demonstrated by MessageIdentifier 4370 in LTE System Information Block 12 aka SIB12. NOTE: testing inside an RF-isolated shield box suggested that...

5.3CVSS5.1AI score0.00982EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/11/02 12:49 a.m.16 views

CVE-2019-18659

The Wireless Emergency Alerts WEA protocol allows remote attackers to spoof a Presidential Alert because cryptographic authentication is not used, as demonstrated by MessageIdentifier 4370 in LTE System Information Block 12 aka SIB12. NOTE: testing inside an RF-isolated shield box suggested that...

5.1AI score0.00982EPSS
Exploits0References1
CVE
CVE
added 2019/11/02 12:49 a.m.180 views

CVE-2019-18659

CVE-2019-18659 concerns the Wireless Emergency Alerts (WEA) protocol, where cryptographic authentication is not used, enabling spoofing of a Presidential Alert as demonstrated by MessageIdentifier 4370 in LTE System Information Block 12 (SIB12). The connected Red Hat Red Hat advisory reiterates t...

5.3CVSS5AI score0.00982EPSS
Exploits0References1Affected Software1
The Hacker News
The Hacker News
added 2018/03/05 7:5 p.m.198 views

New 4G LTE Network Attacks Let Hackers Spy, Track, Spoof and Spam

Security researchers have discovered a set of severe vulnerabilities in 4G LTE protocol that could be exploited to spy on user phone calls and text messages, send fake emergency alerts, spoof location of the device and even knock devices entirely offline. A new research paper PDF recently publish...

7.3AI score
Exploits0
OSV
OSV
added 2016/06/26 1:59 a.m.4 views

CVE-2016-5087

Alertus Desktop Notification before 2.9.31.1710 on OS X uses weak permissions for configuration files and unspecified other files, which allows local users to suppress emergency notifications or change content via standard filesystem operations...

4.4CVSS5.8AI score0.00621EPSS
Exploits0References2
Rows per page
Query Builder