690 matches found
CVE-2025-21452 Reachable Assertion in Modem
Transient DOS while processing a random-access response RAR with an invalid PDU length on LTE network...
CVE-2025-21452
CVE-2025-21452 describes a transient DoS in Qualcomm modem components on LTE networks, triggered when processing a random-access response with an invalid PDU length. The issue affects the modem’s handling of RAR messages, with a root cause tied to malformed PDU length processing, leading to cessa...
CVE-2025-49480
Out-of-bounds access in ASR180x 、ASR190x in lte-telephony, This vulnerability is associated with program files apps/lzma/src/LzmaEnc.c. This issue affects FalconLinux、Kestrel、LapwingLinux: before v1536...
CVE-2025-49492
Out-of-bounds write in ASR180x in lte-telephony, May cause a buffer underrun. This vulnerability is associated with program files apps/atcmdserver/src/devapi.C. This issue affects FalconLinux、Kestrel、LapwingLinux: before v1536...
CVE-2025-49480
The CVE-2025-49480 issue is an out-of-bounds access in the lte-telephony component, specifically in the LzmaEnc.c file, affecting Falcon_Linux, Kestrel, and Lapwing_Linux (and ASR180x/ASR190x) prior to version 1536. The underlying cause is an out-of-bounds access in the LzmaEnc.c implementation. ...
CVE-2025-49480 Out-of-bounds access in lte-telephony
Out-of-bounds access in ASR180x 、ASR190x in lte-telephony, This vulnerability is associated with program files apps/lzma/src/LzmaEnc.c. This issue affects FalconLinux、Kestrel、LapwingLinux: before v1536...
CVE-2025-49480 Out-of-bounds access in lte-telephony
Out-of-bounds access in ASR180x 、ASR190x in lte-telephony, This vulnerability is associated with program files apps/lzma/src/LzmaEnc.c. This issue affects FalconLinux、Kestrel、LapwingLinux: before v1536...
CVE-2025-49492 Out-of-bounds write in lte-telephony
Out-of-bounds write in ASR180x in lte-telephony, May cause a buffer underrun. This vulnerability is associated with program files apps/atcmdserver/src/devapi.C. This issue affects FalconLinux、Kestrel、LapwingLinux: before v1536...
CVE-2025-49492
CVE-2025-49492 describes an out-of-bounds write in the lte-telephony component of ASR180x, specifically in apps/atcmd_server/src/dev_api.C. The issue affects ASR180x before v1536 and also Falcon_Linux, Kestrel, and Lapwing_Linux before v1536. Root cause details are reported across multiple source...
Asrmicro ASR Series 安全漏洞
Asrmicro ASR Series is a series of chips from Avantage Technology Asrmicro, a Chinese company. A security vulnerability exists in Asrmicro ASR Series, which originates from out-of-bounds access to the LzmaEnc.c file in lte-telephony...
CVE-2025-35010 Microhard Bullet-LTE and IPn4Gii AT+MNPINGTM Argument Injection
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MNPINGTM command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command...
CVE-2025-35009 Microhard Bullet-LTE and IPn4Gii AT+MNNETSP Argument Injection
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MNNETSP command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command...
CVE-2025-35009 Microhard Bullet-LTE and IPn4Gii AT+MNNETSP Argument Injection
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MNNETSP command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command...
CVE-2025-35008 Microhard Bullet-LTE and IPn4Gii AT+MMNAME Argument Injection
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MMNAME command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argume...
CVE-2025-35007 Microhard Bullet-LTE and IPn4Gii AT+MFRULE Argument Injection
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFRULE command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argume...
CVE-2025-35005 Microhard Bullet-LTE and IPn4Gii AT+MFMAC Argument Injection
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFMAC command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argumen...
CVE-2025-35005 Microhard Bullet-LTE and IPn4Gii AT+MFMAC Argument Injection
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFMAC command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argumen...
CVE-2025-35004 Microhard Bullet-LTE and IPn4Gii AT+MFIP Argument Injection
Products that incorporate the Microhard BulletLTE-NA2 and IPn4Gii-NA2 are vulnerable to a post-authentication command injection issue in the AT+MFIP command that can lead to privilege escalation. This is an instance of CWE-88, "Improper Neutralization of Argument Delimiters in a Command 'Argument...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a potential information disclosure when receiving invalid RTCP packets during a VoLTE/VoWiFi IMS call...
CVE-2024-22054
A malformed discovery packet sent by a malicious actor with preexisting access to the network could interrupt the functionality of device management and discovery. Affected Products: UniFi Access Points UniFi Switches UniFi LTE Backup UniFi Express Only Mesh Mode, Router mode is not affected...