1200 matches found
Heap overflow
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123.. A heap-based buffer overflow in the 5G MM message codec can occur due to insufficient...
CVE-2023-26076
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. An intra-object overflow in the 5G SM message codec can occur due to insufficient parameter validation when decoding reserved...
CVE-2023-26072
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. A heap-based buffer overflow in the 5G MM message codec can occur due to insufficient...
CVE-2023-26076
CVE-2023-26076 affects Samsung Exynos mobile chipset/modem family (Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, Exynos Auto T5123). The issue is an intra-object overflow in the 5G SM message codec caused by insufficient parameter validation when decoding reserved options, enabl...
SAMSUNG Mobile Chipset 缓冲区错误漏洞
SAMSUNG Mobile Chipset is a series of chips from the South Korean company Samsung SAMSUNG. SAMSUNG Mobile Chipset and Baseband Modem Chipset's Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, Exynos Auto T5123, and Exynos W920 suffer from a buff...
SAMSUNG Mobile Chipset 安全漏洞
SAMSUNG Mobile Chipset is a series of chips from the South Korean company Samsung SAMSUNG. A security vulnerability exists in the Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, Exynos Auto T5123 of the SAMSUNG Mobile Chipset and Baseband Modem Chipset, which stems from inadequate...
CVE-2023-26073
CVE-2023-26073 refers to a heap-based buffer overflow in the 5G MM message codec of Samsung Exynos modems (including Exynos 850, 980, 1080, 1280, 2200, Exynos Modem 5123/5300, Exynos Auto T5123). Root cause: insufficient parameter validation when decoding the extended emergency number list. Affec...
CVE-2023-26074
CVE-2023-26074 is a heap-based buffer overflow in the 5G MM message codec of Samsung Exynos mobile/baseband modems (including Exynos 850/980/1080/1280/2200 and Exynos Modem 5123/5300; Exynos Auto T5123 is mentioned in related material). Root cause: insufficient parameter validation when decoding ...
CVE-2023-26076
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. An intra-object overflow in the 5G SM message codec can occur due to insufficient parameter validation when decoding reserved...
CVE-2023-26074
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123.. A heap-based buffer overflow in the 5G MM message codec can occur due to insufficient...
Input validation
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. An intra-object overflow in the 5G MM message codec can occur due to insufficient parameter...
UNISOC Chipsets 输入验证错误漏洞
UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in the UNISOC Chipsets wlan module that stems from a lack of parameter checking. This could lead to a local denial of service in the wlan service...
UNISOC Chipsets 缓冲区错误漏洞
UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in the UNISOC Chipsets wlan module that stems from a lack of parameter checking. This could lead to a local denial of service in the wlan service...
SAMSUNG Mobile Chipset 安全漏洞
SAMSUNG Mobile Chipset is a family of chips from the South Korean company Samsung SAMSUNG. A security vulnerability exists in Samsung Mobile Chipset and Baseband Modem Chipset, which stems from insufficient parameter validation when decoding a list of service areas, which may result in an...
CVE-2023-26075
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. An intra-object overflow in the 5G MM message codec can occur due to insufficient parameter...
Cisco NX-OS Software 操作系统命令注入漏洞
Cisco NX-OS Software is a suite of data center-grade operating system software used by Cisco's switches in the United States. A security vulnerability exists in Cisco NX-OS Software that stems from insufficient validation of parameters passed to specific CLI commands. An attacker exploiting this...
CVE-2023-24812 SQL injection of notes/search-by-tag
Misskey is an open source, decentralized social media platform. In versions prior to 13.3.3 SQL injection is possible due to insufficient parameter validation in the note search API by tag notes/search-by-tag. This has been fixed in version 13.3.3. Users are advised to upgrade. Users unable to...
Misskey SQL注入漏洞
Misskey is a micro blogging platform. A SQL injection vulnerability exists in Misskey versions prior to 13.3.3, which stems from insufficient validation of parameters, and may be subject to SQL injection...
SUSE CVE-2010-4252
OpenSSL before 1.0.0c, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol...
SUSE CVE-2010-4478
OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a...