CVE-2024-23350

CVE-2024-23350 relates to a permanent Denial of Service in Qualcomm Snapdragon software, triggered when the DL NAS transport processes multiple payloads: one payload with a SOR container failing its integrity check and another LPP where the UE must send a status message. Root cause cited as an un...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets, which originated when the Multi Mode Call Processor module contained an out-of-bounds read vulnerability...

PT-2024-33857

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the Linux kernel's identity mapping, where the use of GB pages can lead to the inclusion of large ranges of addresses not actually requested, including areas marked...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets, which arises from an infinite loop vulnerability contained in the Multi Mode Call Processor module...

DEBIAN-CVE-2024-41039

In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Fix overflow checking of wmfw header Fix the checking that firmware file buffer is large enough for the wmfw header, to prevent overrunning the buffer. The original code tested that the firmware data buffer...

UBUNTU-CVE-2024-41032

In the Linux kernel, the following vulnerability has been resolved: mm: vmalloc: check if a hash-index is in cpupossiblemask The problem is that there are systems where cpupossiblemask has gaps between set CPUs, for example SPARC. In this scenario addrtovbxa hash function can return an index whic...

SDoP 安全漏洞

SDoP is a simple DocBook processor by Philip Hazel Personal Developer. A security vulnerability exists in SDoP versions prior to 1.11 that stems from an inability to properly handle certain parameters in input data. An attacker exploiting this vulnerability could execute arbitrary code...

PT-2024-6666

Name of the Vulnerable Software and Affected Versions: Qualcomm Multiple Chipsets affected versions not specified Description: The issue is related to a use-after-free vulnerability in the Digital Signal Processor DSP service of Qualcomm chipsets, which can lead to memory corruption while...

org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

A vulnerability was found in Bouncy Castle. An issue was discovered in ECCurve.java and ECCurve.cs in Bouncy Castle Java BC Java. Importing an EC certificate with crafted F2m parameters can lead to excessive CPU consumption during the evaluation of the curve parameters...

CVE-2024-7007

Positron Broadcast Signal Processor TRA7005 v1.20 is vulnerable to an authentication bypass exploit that could allow an attacker to have unauthorized access to protected areas of the application...

CVE-2024-7007

Positron Broadcast Signal Processor TRA7005 v1.20 is vulnerable to an authentication bypass exploit that could allow an attacker to have unauthorized access to protected areas of the application...

CVE-2024-7007

CVE-2024-7007 affects Positron Broadcast Signal Processor TRA7005 v1.20. The vulnerability is an authentication bypass (Alternate Path or Channel CWE-288) that could let an attacker reach protected areas (e.g., /user, /operator, /admin) without credentials. Several connected sources concur on the...

CVE-2024-7007 Authentication Bypass Using an Alternate Path or Channel in Positron Broadcast Signal Processor TRA7005

Positron Broadcast Signal Processor TRA7005 v1.20 is vulnerable to an authentication bypass exploit that could allow an attacker to have unauthorized access to protected areas of the application...

CISA Releases Two Industrial Control Systems Advisories

CISA released two Industrial Control Systems ICS advisories on July 25, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-207-01 Siemens SICAM Products ICSA-24-207-02 Positron Broadcast Signal Processor CISA...

Positron Broadcast Signal Processor

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available Vendor : Positron S.R.L Equipment : Broadcast Signal Processor TRA7005 Vulnerability : Authentication Bypass Using an Alternate Path or Channel 2. RISK EVALUATION...

PT-2024-38025 · Positron · Positron Broadcast Signal Processor Tra7005

Name of the Vulnerable Software and Affected Versions: Positron Broadcast Signal Processor TRA7005 version 1.20 Description: The issue allows an attacker to bypass authentication, potentially gaining unauthorized access to protected areas of the application. Recommendations: For Positron Broadcas...

Positron Broadcast Signal Processor TRA7005 安全漏洞

Positron Broadcast Signal Processor TRA7005 is a broadcast signal processor from Positron. A security vulnerability exists in Positron Broadcast Signal Processor TRA7005 v1.20 that stems from vulnerability to authentication bypass attacks. An unauthorized attacker could exploit the vulnerability ...

The vulnerabilities of the CPCI85 and SICORE processor control modules from Siemens SICAM, such as CP-8031, CP-8050, and SICAM EGS, allow attackers to downgrade the firmware version of the devices.

The vulnerability of the CPCI85 and SICORE processor module control systems from Siemens SICAM, such as CP-8031, CP-8050, and SICAM EGS, stems from the lack of authentication for critical functions. Exploiting this vulnerability allows a malicious actor to downgrade the firmware version of the...

The vulnerabilities of the CPCI85 and SICORE processor control modules from Siemens SICAM, such as CP-8031, CP-8050, and SICAM EGS, allow a hacker to gain full control over the device.

The vulnerability of the CPCI85 and SICORE processor module control systems from Siemens SICAM, such as CP-8031, CP-8050, and SICAM EGS, stems from the lack of necessary authentication checks during password reset operations. Exploiting this vulnerability allows a remote attacker to gain full...

opj_t1_clbl_decode_processor in openjp2/t1.c in OpenJPEG 2.3.1 through 2020-01-28 has a heap-based buffer overflow in the qmfbid==1 case a different issue than CVE-2020-6851.

...