12 matches found
CVE-2025-40069
In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix obj leak in VMBIND error path If we fail a handle-lookup part way thru, we need to drop the already obtained obj references. Patchwork: https://patchwork.freedesktop.org/patch/669784/...
EUVD-2023-32254
Malicious code in bioql PyPI...
PT-2024-19853
Name of the Vulnerable Software and Affected Versions MSM module affected versions not specified Description The issue involves memory corruption when invoking IOCTL calls for the MSM module from user space during audio playback and record. This occurs due to improper handling of IOCTL calls,...
CVE-2022-24401
Adversary-induced keystream re-use on TETRA air-interface encrypted traffic using any TEA keystream generator. IV generation is based upon several TDMA frame counters, which are frequently broadcast by the infrastructure in an unauthenticated manner. An active adversary can manipulate the view of...
CVE-2022-24401
CVE-2022-24401 concerns the TETRA system’s Air Interface Encryption (AIE) keystream generator. The root cause is IV generation based on TDMA frame counters broadcast unauthenticated, enabling an adversary to manipulate counters observed by a mobile station and provoke keystream re-use. This can a...
CVE-2022-24401 Keystream recovery for arbitrary frames in TETRA
Adversary-induced keystream re-use on TETRA air-interface encrypted traffic using any TEA keystream generator. IV generation is based upon several TDMA frame counters, which are frequently broadcast by the infrastructure in an unauthenticated manner. An active adversary can manipulate the view of...
CVE-2023-33019
Transient DOS in WLAN Host while doing channel switch announcement CSA, when a mobile station receives invalid channel in CSA IE...
CVE-2023-28584
Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement CSA...
Code injection
Transient DOS in WLAN Host while doing channel switch announcement CSA, when a mobile station receives invalid channel in CSA IE...
CVE-2023-33019
CVE-2023-33019 describes a Transient Denial of Service in the WLAN Host when a mobile station processes a Channel Switch Announcement (CSA) with an invalid channel. Public sources associate this CVE with Qualcomm WLAN components (high severity, CVSSv3.1: 7.5; network attack vector, no user intera...
PT-2023-24142 · Wlan Host · Wlan Host
Name of the Vulnerable Software and Affected Versions: WLAN Host affected versions not specified Description: The issue is related to a Transient Denial of Service DOS in the WLAN Host when a mobile station receives an invalid channel in the Channel Switch Announcement CSA Information Element IE...
Hebei OuRun TianTeng YunMengBar Network Studio YMBCMS Command Execution Vulnerability
YMBCMS is one of the self-developed products under Hebei OuRun TianTeng YunMengBar Network Studio.YMBCMS integrates computer station, cell phone station, WeChat public platform, small program, APP in one, sharing space, data synchronization and so on. Hebei OuRunTianTeng YunMengBar Network Studio...