55 matches found
Astra Linux - уязвимость в ofono
A flaw was discovered in ofono, an open-source telephony software for Linux. A stack overflow bug was detected within the smsdecodeaddressfield function during the SMS PDU decoding process. It is assumed that the attack scenario can be executed from a compromised modem, a malicious base station, ...
Astra Linux - уязвимость в ofono
A flaw was discovered in ofono, an open-source telephony software for Linux. A stack overflow bug occurs within the decodestatusreport function during SMS decoding. It is assumed that the attack scenario can be executed from a compromised modem, a malicious base station, or simply through SMS...
Astra Linux - уязвимость в ofono
oFono CUSD AT Command Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit this...
Astra Linux - уязвимость в ofono
oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit this...
Astra Linux - уязвимость в ofono
A flaw was discovered in ofono, an open-source telephony software for Linux. A stack overflow bug was triggered within the decodesubmitreport function during SMS decoding. It is assumed that the attack scenario can be executed from a compromised modem, a malicious base station, or simply through...
(0Day) (Pwn2Own) oFono AT CMGR Command Uninitialized Variable Information Disclosure Vulnerability
This vulnerability allows local attackers to disclose sensitive information on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit this vulnerability. The specific flaw exists within the parsing of responses from AT+CM...
EUVD-2024-48447
Malicious code in bioql PyPI...
EUVD-2024-48453
Malicious code in bioql PyPI...
EUVD-2024-48446
Malicious code in bioql PyPI...
EUVD-2024-48451
Malicious code in bioql PyPI...
EUVD-2024-48450
Malicious code in bioql PyPI...
EUVD-2024-48444
Malicious code in bioql PyPI...
EUVD-2023-54108
Malicious code in bioql PyPI...
EUVD-2024-48452
Malicious code in bioql PyPI...
EUVD-2024-48449
Malicious code in bioql PyPI...
EUVD-2024-48454
Malicious code in bioql PyPI...
EUVD-2024-48448
Malicious code in bioql PyPI...
EUVD-2024-48445
Malicious code in bioql PyPI...
CVE-2024-6030 Tesla Model S oFono Unnecessary Privileges Sandbox Escape Vulnerability
Tesla Model S oFono Unnecessary Privileges Sandbox Escape Vulnerability. This vulnerability allows local attackers to escape the sandbox on affected Tesla Model S vehicles. An attacker must first obtain the ability to execute code within the sandbox on the target system in order to exploit this...
CVE-2024-6030
CVE-2024-6030 affects Tesla Model S, specifically the oFono process. The vulnerability enables local attackers to escape the device sandbox by abusing oFono to modify interfaces, thereby bypassing the iptables network sandbox. An exploit would require the attacker to execute code within the sandb...