CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/22 7:26 p.m.•6 views

CVE-2021-25487

Lack of boundary checking of a buffer in setskbpriv of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read and it results in arbitrary code execution by dereference of invalid function pointer...

7.8CVSS7.7AI score0.0062EPSS

BDU FSTEC•added 2024/12/11 12:0 a.m.•4 views

The vulnerability of the qmi_wwan component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the qmiwwan component in the Linux operating system is related to the lack of memory release after the effective lifespan of the component. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00226EPSS

Exploits0References18Affected Software6

CNNVD•added 2023/11/08 12:0 a.m.•3 views

Huawei EMUI Security Vulnerability

Huawei EMUI is an Android-based mobile operating system developed by China's Huawei Huawei. A security vulnerability exists in Huawei EMUI version 11.0.1, which originates from a parameter in the QMI service module that is out of range, resulting in an error when reading file data...

7.5CVSS6.7AI score0.00514EPSS

CNNVD•added 2023/11/06 12:0 a.m.•3 views

MediaTek Chip Security Breach

MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in the MediaTek chips, which stems from a lack of boundary checking in the modem CCCI module, which may result in out-of-bounds writes...

8.4CVSS6.8AI score0.00183EPSS

Positive Technologies•added 2023/11/06 12:0 a.m.•3 views

PT-2023-24069 · Unknown · Modem Ccci

Name of the Vulnerable Software and Affected Versions: Modem CCCI affected versions not specified Description: The issue is related to a possible out of bounds write due to a missing bounds check in the modem CCCI. This could lead to local escalation of privilege with System execution privileges...

8.4CVSS7.1AI score0.00183EPSS

Exploits0References4

CISA KEV Catalog•added 2023/06/29 12:0 a.m.•29 views

Samsung Mobile Devices Out-of-Bounds Read Vulnerability

Samsung mobile devices contain an out-of-bounds read vulnerability within the modem interface driver due to a lack of boundary checking of a buffer in setskbpriv, leading to remote code execution by dereference of an invalid function pointer...

7.8CVSS8AI score0.0062EPSS

In wildExploits0

CISA KEV Catalog•added 2023/06/29 12:0 a.m.•15 views

Samsung Mobile Devices Improper Input Validation Vulnerability

Samsung mobile devices contain an improper input validation vulnerability within the modem interface driver that results in a format string bug leading to kernel panic...

5.5CVSS6.8AI score0.00518EPSS

In wildExploits0

ATTACKERKB•added 2022/07/06 2:15 p.m.•4 views

CVE-2022-21744

In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neighbour Cell Data PNCD improper neighbouring cell size with no additional execution privileges needed. User interaction is not needed for...

10CVSS7.8AI score0.02563EPSS

OSV•added 2021/10/06 6:15 p.m.•4 views

CVE-2021-25489

Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic...

5.5CVSS5.8AI score0.00518EPSS

NVD•added 2021/10/06 6:15 p.m.•13 views

CVE-2021-25488

Lack of boundary checking of a buffer in recvdata of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read...

5.5CVSS0.00105EPSS

NVD•added 2021/10/06 6:15 p.m.•12 views

CVE-2021-25487

7.8CVSS0.0062EPSS

NVD•added 2021/10/06 6:15 p.m.•24 views

CVE-2021-25489

Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic...

5.5CVSS0.00518EPSS

OSV•added 2021/10/06 6:15 p.m.•2 views

CVE-2021-25488

Lack of boundary checking of a buffer in recvdata of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read...

5.5CVSS6AI score

Prion•added 2021/10/06 6:15 p.m.•14 views

Code injection

Lack of boundary checking of a buffer in recvdata of modem interface driver prior to SMR Oct-2021 Release 1 allows OOB read...

2.1CVSS5.6AI score0.00105EPSS

Prion•added 2021/10/06 6:15 p.m.•16 views

Design/Logic Flaw

4.6CVSS7.8AI score0.0062EPSS

Prion•added 2021/10/06 6:15 p.m.•15 views

Format string

Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic...

4.9CVSS5.3AI score0.00518EPSS

Cvelist•added 2021/10/06 5:10 p.m.•29 views

CVE-2021-25489

Assuming radio permission is gained, missing input validation in modem interface driver prior to SMR Oct-2021 Release 1 results in format string bug leading to kernel panic...

3.3CVSS5.6AI score0.00518EPSS

CVE•added 2021/10/06 5:10 p.m.•442 views

CVE-2021-25489

The CVE-2021-25489 issue affects Samsung Mobile Devices, caused by improper input validation in the modem interface driver, triggering a format-string error that can cause a kernel panic. Affected are Samsung Mobile Devices prior to SMR Oct-2021 Release 1. The root cause is missing input validati...

5.5CVSS5.6AI score0.00518EPSS

In wildExploits0References2Affected Software1

CVE•added 2021/10/06 5:10 p.m.•48 views

CVE-2021-25488

The CVE-2021-25488 issue affects Samsung devices via the modem interface driver’s recv_data() function. The root cause is a missing boundary check in the buffer handling, before the SMR Oct-2021 Release 1 patch, which permits an out-of-bounds (OOB) read. The vulnerability is documented across mul...

5.5CVSS5.6AI score0.00105EPSS