14 matches found
Devilray: A Systematic Adversarial Model Revealing Blind Spots in Fake Base Station Detection
Fake Base Station FBS detection has been a critical focus of cellular security research for over two decades. However, significant financial and regulatory barriers to accessing commercial FBS C-FBS devices have limited direct visibility into real-world operations, forcing detection systems to be...
CVE-2022-23425
Improper input validation in Exynos baseband prior to SMR Feb-2022 Release 1 allows attackers to send arbitrary NAS signaling messages with fake base station...
CVE-2020-1837
ChangXiang 8 Plus with versions earlier than 9.1.0.136C00E121R1P6T8 have a denial of service vulnerability. The device does not properly handle certain message from base station, the attacker could craft a fake base station to launch the attack. Successful exploit could cause a denial of signal...
CVE-2015-8546
An issue was discovered on Samsung mobile devices with software through 2015-11-12, affecting the Galaxy S6/S6 Edge, Galaxy S6 Edge+, and Galaxy Note5 with the Shannon333 chipset. There is a stack-based buffer overflow in the baseband process that is exploitable for remote code execution via a fa...
CVE-2022-23425
Improper input validation in Exynos baseband prior to SMR Feb-2022 Release 1 allows attackers to send arbitrary NAS signaling messages with fake base station...
CVE-2022-23425
Improper input validation in Exynos baseband prior to SMR Feb-2022 Release 1 allows attackers to send arbitrary NAS signaling messages with fake base station...
Input validation
Improper input validation in Exynos baseband prior to SMR Feb-2022 Release 1 allows attackers to send arbitrary NAS signaling messages with fake base station...
CVE-2022-23425
Improper input validation in Exynos baseband prior to SMR Feb-2022 Release 1 allows attackers to send arbitrary NAS signaling messages with fake base station...
New Mobile Network Vulnerabilities Affect All Cellular Generations Since 2G
Researchers have disclosed security vulnerabilities in handover, a fundamental mechanism that undergirds modern cellular networks, which could be exploited by adversaries to launch denial-of-service DoS and man-in-the-middle MitM attacks using low-cost equipment. The "vulnerabilities in the...
CVE-2020-1837
ChangXiang 8 Plus with versions earlier than 9.1.0.136C00E121R1P6T8 have a denial of service vulnerability. The device does not properly handle certain message from base station, the attacker could craft a fake base station to launch the attack. Successful exploit could cause a denial of signal...
Stack overflow
An issue was discovered on Samsung mobile devices with software through 2015-11-12, affecting the Galaxy S6/S6 Edge, Galaxy S6 Edge+, and Galaxy Note5 with the Shannon333 chipset. There is a stack-based buffer overflow in the baseband process that is exploitable for remote code execution via a fa...
Huawei Y9 2019 and Honor View 20 Denial of Service Vulnerabilities
Huawei Y9 2019 and Honor View 20 are both a smartphone from Chinese company Huawei Huawei. A denial of service vulnerability exists in the Huawei Y9 2019 and Honor View 20, which stems from the program's failure to perform adequate input validation. An attacker can exploit the vulnerability by...
Huawei Honor10 Lite and Huawei Y9 Denial of Service Vulnerability (CNVD-2019-44785)
Huawei Honor10 Lite and Huawei Y9 are both a smartphone from Chinese company Huawei Huawei. A denial-of-service vulnerability exists in Huawei Honor10 Lite Harry-AL00C before 9.1.0.217 C00E215R3P1 and Huawei Y9 Jackman-L23 before 9.1.0.220 C45E3R1P1T8, which can be exploited to cause a dead loop...
CVE-2017-17175
Short Message Service SMS module of Mate 9 Pro Huawei smart phones with the versions before LON-AL00B 8.0.0.354C00 has a Denial of Service DoS vulnerability. An unauthenticated attacker may set up a pseudo base station, and send special malware text message to the phone, causing the mobile phone ...