CVE-2024-56427

CVE-2024-56427 affects Samsung Exynos and related modems (980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123/5300/5400). Root cause: lack of a length check in handling RRC packets leads to out-of-bounds access. Public sources indicate this can enabl...

CVE-2025-26783

CVE-2025-26783 affects Samsung’s RRC implementation on multiple Exynos devices (Mobile Processor, Wearable Processor, Modem Exynos 2100/1280/2200/1330/1380/1480/2400/W1000, Modem 5300/5400). The issue is described as incorrect handling of undefined values that leads to a Denial of Service. The pu...

CVE-2025-26785

An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The lack of a length check leads to out-of-bounds writes...

CVE-2025-26785

An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The lack of a length check leads to out-of-bounds writes...

CVE-2024-56427

An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The lack of a length check leads to out-of-bounds access via malformed RRC packets to the...

PT-2025-21233 · Samsung · Samsung Modem +1

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Processor and Wearable Processor Exynos versions 980 through 9825 Samsung Mobile Processor and Wearable Processor Exynos versions 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110 Samsung Mobile Processor and...

CVE-2024-55569

The CVE-2024-55569 entry affects Samsung Exynos family: Mobile Processor, Wearable Processor, and Modem (980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123/5300/5400). The root cause is a missing length check that leads to out-of-bounds writes. Publ...

CVE-2025-26784

An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The lack of a length check leads to out-of-bounds writes...

CVE-2025-27891

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The lack of a length check leads to out-of-bounds reads via malformed NAS packets...

SUSE CVE-2025-20012

Incorrect behavior order for some IntelR Coretm Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access...

CVE-2025-24495

Incorrect initialization of resource in the branch prediction unit for some IntelR Core™ Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access...

CVE-2024-48869

Improper restriction of software interfaces to hardware features for some IntelR XeonR 6 processor with E-cores when using IntelR Trust Domain Extensions IntelR TDX or IntelR Software Guard Extensions IntelR SGX may allow a privileged user to potentially enable escalation of privilege via local...

CVE-2024-48869

CVE-2024-48869 affects Intel Xeon 6 processors with E-cores when using SGX/TDX. Root cause: improper restriction of software interfaces to hardware features, enabling a privileged local user to escalate privileges. Affected components include SGX/TDX-enabled microcode interfaces; impact is local ...

CVE-2024-45332

CVE-2024-45332 details (normal mode) The exposure concerns Intel processors where shared microarchitectural predictor state influences transient execution in indirect branch predictors, enabling potential information disclosure via local access. Affected: Intel CPUs with the relevant microarchite...

CVE-2025-20100

Improper access control in the memory controller configurations for some IntelR XeonR 6 processor with E-cores may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2025-20100

Improper access control in the memory controller configurations for some IntelR XeonR 6 processor with E-cores may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2025-20054

Uncaught exception in the core management mechanism for some IntelR Processors may allow an authenticated user to potentially enable denial of service via local access...

CVE-2025-20047

Intel CNVi vulnerability CVE-2025-20047 affects Intel® Integrated Connectivity I/O interface on some Core™ Ultra Processors. The root cause is improper locking in CNVi that could allow an unauthenticated attacker with physical access to escalate privileges. Impact per sources is elevation of priv...

CVE-2025-20012

Incorrect behavior order for some IntelR Core™ Ultra Processors may allow an unauthenticated user to potentially enable information disclosure via physical access...

firefox: thunderbird: Use-after-free triggered by XSLTProcessor

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after-free...