CVE-2025-70121

An array index out of bounds vulnerability in the AMF component of free5GC v4.0.1 allows remote attackers to cause a denial of service via a crafted 5GS Mobile Identity in a NAS Registration Request message. The issue occurs in the GetSUCI method NASMobileIdentity5GS.go when accessing index 5 of ...

PT-2025-2507 · Modem · Modem

Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: The issue occurs when a registration accept message over-the-air OTA with incorrect ciphering key data is received, causing a transient denial of service DOS. This happens in the modem. No...

IBM Tivoli Storage Manager多个缓冲区溢出漏洞

IBM Tivoli Storage Manager是一款用于系统备份和恢复的解决方案。 IBM Tivoli Storage Manager存在多个安全问题，远程攻击者可以利用漏洞对应用程序进行拒绝服务或缓冲区溢出攻击。 问题一： 初始化sign-on请求包含指定语言的字段，在一般情况下字符串是dscenu.txt，通常情况下服务器验证的语言字符串不超过0x100字节，但是，如果语言字符串第一个字节为0x18，那么这个检查将不发生，而造成固定的缓冲区被溢出。 问题二和三：...