Lucene search
K

11 matches found

CNNVD
CNNVD
added 2026/04/16 12:0 a.m.9 views

free5GC 安全漏洞

free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 4.2.1 contained security vulnerabilities. These vulnerabilities stemmed from the process that reads traffic affecting subscriptions in the UDR service. After a verification failure, the...

8.7CVSS5.8AI score0.00493EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/16 12:0 a.m.13 views

free5GC 安全漏洞

free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 4.2.1 contained security vulnerabilities. These vulnerabilities stemmed from the GET request handler not properly returning values when necessary parameters were missing. This allowed the...

7.5CVSS5.8AI score0.00506EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/02 7:3 p.m.4 views

CVE-2026-34762 Ella Core Has Audit Log Falsification via Path/Body IMSI Mismatch in UpdateSubscriber

Ella Core is a 5G core designed for private networks. Prior to version 1.8.0, the PUT /api/v1/subscriber/imsi API accepts an IMSI identifier from both the URL path and the JSON request body but never verifies they match. This allows an authenticated NetworkManager to modify any subscriber's polic...

2.7CVSS5.7AI score0.00185EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/17 9:31 p.m.4 views

EUVD-2025-197856

reebox v5 HD firmware = 1.7.20, Freebox v5 Crystal firmware = 1.7.20, Freebox v6 Révolution r1–r3 firmware = 4.7.x, Freebox Mini 4K firmware = 4.7.x, and Freebox One firmware = 4.7.x were discovered to expose subscribers' IMSI identifiers in plaintext during the initial phase of EAP-SIM...

6.8AI score0.00097EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/07/12 2:15 p.m.4 views

CVE-2022-33692

Exposure of Sensitive Information in Messaging application prior to SMR Jul-2022 Release 1 allows local attacker to access imsi and iccid via log...

4CVSS5.8AI score0.00099EPSS
Exploits0References2
OSV
OSV
added 2022/07/12 2:15 p.m.3 views

CVE-2022-33687

Exposure of Sensitive Information in telephony-common.jar prior to SMR Jul-2022 Release 1 allows local attackers to access IMSI via log...

3.3CVSS5.8AI score0.00099EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/01/10 12:0 a.m.6 views

Samsung SMR 安全漏洞

Samsung SMR is a system patch package from Samsung South Korea. It provides patches for Samsung mobile applications. A security vulnerability exists in Samsung SMR that originates from improper authorization in TelephonyManager and allows an attacker to gain access to IMSI without the...

4CVSS5AI score0.00102EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2017/08/07 8:0 a.m.6 views

CVE-2017-9633

An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in the Continental AG Infineon S-Gold 2 PMB 8876 chipset on BMW several models produced between 2009-2010, Ford a limited number of P-HEV vehicles, Infiniti 2013 JX35, Infiniti 2014-2016 QX60, Infiniti...

9AI score0.02238EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2017/08/07 12:0 a.m.6 views

PT-2017-19088 · Infineon · Infineon S-Gold 2

Name of the Vulnerable Software and Affected Versions: Infineon S-Gold 2 PMB 8876 chipset versions used in various vehicle models produced between 2009-2016 Description: An issue with improper restriction of operations within the bounds of a memory buffer was found. This issue may allow an attack...

8.8CVSS8.9AI score0.02238EPSS
Exploits0References4
Prion
Prion
added 2010/11/26 8:0 p.m.22 views

Heap overflow

Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple iOS before 4.2 on the iPhone and iPad allows remote attackers to execute arbitrary code on the baseband processor via a crafted Temporary Mobile Subscriber Identity TMSI field...

6.8CVSS8.1AI score0.03712EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2010/11/26 7:0 p.m.30 views

CVE-2010-3832

Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple iOS before 4.2 on the iPhone and iPad allows remote attackers to execute arbitrary code on the baseband processor via a crafted Temporary Mobile Subscriber Identity TMSI field...

7.5AI score0.03712EPSS
Exploits0References6
Rows per page
Query Builder