CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/22 7:26 p.m.•4 views

CVE-2021-25487

Lack of boundary checking of a buffer in setskbpriv of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer...

7.8CVSS7.7AI score0.02558EPSS

CNNVD•added 2023/11/08 12:0 a.m.•1 views

Huawei EMUI Security Vulnerability

Huawei EMUI is an Android-based mobile operating system developed by China's Huawei Huawei. A security vulnerability exists in Huawei EMUI version 11.0.1, which originates from a parameter in the QMI service module that is out of range, resulting in an error when reading file data...

7.5CVSS6.7AI score0.0016EPSS

Positive Technologies•added 2023/11/06 12:0 a.m.•2 views

PT-2023-24069 · Unknown · Modem Ccci

Name of the Vulnerable Software and Affected Versions: Modem CCCI affected versions not specified Description: The issue is related to a possible out of bounds write due to a missing bounds check in the modem CCCI. This could lead to local escalation of privilege with System execution privileges...

8.4CVSS7.1AI score0.0003EPSS

Exploits0References4

CNNVD•added 2023/11/06 12:0 a.m.•1 views

MediaTek Chip Security Breach

MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from a lack of boundary checking in the modem CCCI module, which may result in out-of-bounds writes...

8.4CVSS6.8AI score0.0003EPSS

CISA KEV Catalog•added 2023/06/29 12:0 a.m.•14 views

Samsung Mobile Devices Improper Input Validation Vulnerability

Samsung mobile devices contain an improper input validation vulnerability within the modem interface driver that results in a format string bug leading to kernel panic...

5.5CVSS6.8AI score0.00346EPSS

In wildExploits0

CISA KEV Catalog•added 2023/06/29 12:0 a.m.•28 views

Samsung Mobile Devices Out-of-Bounds Read Vulnerability

Samsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in setskbpriv, leading to remote code execution by dereference of an invalid function pointer...

7.8CVSS8AI score0.02558EPSS

In wildExploits0

ATTACKERKB•added 2022/07/06 2:15 p.m.•3 views

CVE-2022-21744

In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neighbour Cell Data PNCD improper neighbouring cell size with no additional execution privileges needed. User interaction is not needed for...

10CVSS7.8AI score0.05051EPSS

NVD•added 2021/10/06 6:15 p.m.•17 views

CVE-2021-25489

Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic...

5.5CVSS0.00346EPSS

OSV•added 2021/10/06 6:15 p.m.•3 views

CVE-2021-25489

Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic...

5.5CVSS5.8AI score0.00346EPSS

NVD•added 2021/10/06 6:15 p.m.•9 views

CVE-2021-25487

7.8CVSS0.02558EPSS

NVD•added 2021/10/06 6:15 p.m.•11 views

CVE-2021-25488

Lack of boundary checking of a buffer in recvdata of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read...

5.5CVSS0.00019EPSS

OSV•added 2021/10/06 6:15 p.m.•0 views

CVE-2021-25488

Lack of boundary checking of a buffer in recvdata of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read...

5.5CVSS6AI score

Prion•added 2021/10/06 6:15 p.m.•12 views

Format string

Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic...

4.9CVSS5.3AI score0.00346EPSS

Prion•added 2021/10/06 6:15 p.m.•12 views

Design/Logic Flaw

4.6CVSS7.8AI score0.02558EPSS

Prion•added 2021/10/06 6:15 p.m.•10 views

Code injection

Lack of boundary checking of a buffer in recvdata of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read...

2.1CVSS5.6AI score0.00019EPSS

Cvelist•added 2021/10/06 5:10 p.m.•17 views

CVE-2021-25489

Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic...

3.3CVSS5.6AI score0.00346EPSS

CVE•added 2021/10/06 5:10 p.m.•432 views

CVE-2021-25489

The CVE-2021-25489 issue affects Samsung Mobile Devices, caused by improper input validation in the modem interface driver, triggering a format-string error that can cause a kernel panic. Affected are Samsung Mobile Devices prior to SMR Oct-2021 Release 1. The root cause is missing input validati...

5.5CVSS5.6AI score0.00346EPSS

In wildExploits0References2Affected Software1

Cvelist•added 2021/10/06 5:10 p.m.•12 views

CVE-2021-25488

Lack of boundary checking of a buffer in recvdata of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read...

5.5CVSS5.8AI score0.00019EPSS

CVE•added 2021/10/06 5:10 p.m.•40 views

CVE-2021-25488

The CVE-2021-25488 issue affects Samsung devices via the modem interface driver’s recv_data() function. The root cause is a missing boundary check in the buffer handling, before the SMR Oct-2021 Release 1 patch, which permits an out-of-bounds (OOB) read. The vulnerability is documented across mul...

5.5CVSS5.6AI score0.00019EPSS