CVE-2025-62818

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. An out-of-bounds write occurs due to a mismatch between the TP-UDHI...

CVE-2017-18666

An issue was discovered on Samsung mobile devices with KK4.4, L5.0/5.1, M6.0, and N7.x software. Applications can send arbitrary premium SMS messages. The Samsung ID is SVE-2017-8701 June 2017...

EUVD-2017-8341

Malware in sbrugna...

EUVD-2015-7218

Malware in sbrugna...

EUVD-2022-25501

Malicious code in bioql PyPI...

CVE-2013-4763

Samsung Galaxy S3/S4 exposes an unprotected component allowing arbitrary SMS text messages without requesting permission...

CVE-2005-2311

SMS 1.9.2m and earlier allows local users to overwrite arbitrary files via a symlink attack on the 1 request1 or 2 request2 temporary files...

CVE-2025-32889

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

CVE-2025-32888

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

CVE-2023-4232 Ofono: sms decoder stack-based buffer overflow remote code execution vulnerability within the decode_status_report() function

A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decodestatusreport function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. There is a bound...

CVE-2023-47610

Summary of CVE-2023-47610 : A heap-based buffer overflow in the SMS handling path of Telit Cinterion modems (notably EHS5/6/8, with related references to BGS5 and PDS5/6/8 in PT-2023-9100) could allow a remote, unauthenticated attacker to execute arbitrary code on the target via a specially craft...

CVE-2023-47610

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists in Telit Cinterion EHS5/6/8 that could allow a remote unauthenticated attacker to execute arbitrary code on the targeted system by sending a specially crafted SMS message...

CVE-2013-4763

Samsung Galaxy S3/S4 exposes an unprotected component allowing arbitrary SMS text messages without requesting permission...

CVE-2013-4764

Samsung Galaxy S3/S4 exposes an unprotected component allowing an unprivileged app to send arbitrary SMS texts to arbitrary destinations without permission...

Femtocell home base station to a communication to intercept, fake arbitrary SMS vulnerability-vulnerability warning-the black bar safety net

Ali mobile security team with the Chinese Thiel Laboratory of wireless technology Ministry of communication experts together, the combination of domestic operator a type of Femtocell base station for the security analysis, found that the more pieces of the major vulnerabilities that can lead to...

CVE-2014-8610

The CVE describes a vulnerability in Android prior to 5.0.0 where AndroidManifest.xml does not require SEND_SMS for the SmsReceiver, allowing an unprivileged app to cause stored SMS messages to be resent or new draft SMS messages to be sent by broadcasting the com.android.mms.transaction.MESSAGE_...

CVE-2014-2968

CVE-2014-2968 is a stored cross-site scripting (XSS) vulnerability in the Huawei E355 series web interface. The issue affects the CH1E355SM device with software 21.157.37.01.910 and Web UI 11.001.08.00.03, allowing an attacker to inject arbitrary script or HTML via an SMS message when interacting...

Huawei E303 contains a cross-site request forgery vulnerability

Overview The built-in web interface of Huawei E303 devices contains a cross-site request forgery vulnerability. Description Huawei E303 wireless broadband modems include a web interface for administration and additional services. The web interface allows users to send and receive SMS messages usi...

Using USB Modems to Phish and Send Malicious SMS Messages

Some USB modems can be leveraged to send malicious SMS messages and even carry out spear-phishing attacks – sometimes in conjunction with each other – thanks to a cross-site request forgery vulnerability present in the device’s web interfaces. According to Swedish security researcher Andreas Lind...

Samsung Galaxy S4 SMS欺骗漏洞

BUGTRAQ ID: 60756 Samsung Galaxy S是三星的Android系统的智能手机。 Samsung Galaxy S4在Cloud Backup功能中存在SMS欺骗漏洞，攻击者通过发送特制的SMS到受影响设备，利用此漏洞可进行网络钓鱼攻击。 0 Samsung Galaxy S4 厂商补丁： Samsung ------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...