12 matches found
CVE-2024-9413
The transportmessagehandler function in SCP-Firmware release versions 2.11.0-2.15.0 does not properly handle errors, potentially allowing an Application Processor AP to cause a buffer overflow in System Control Processor SCP firmware...
CVE-2023-33100
Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification...
CVE-2020-3670
u'Potential out of bounds read while processing downlink NAS transport message due to improper length check of Information ElementIEI NAS message container' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in Agatt...
CVE-2024-9413
CVE-2024-9413 affects ARM SCP-Firmware, specifically SCP-Firmware releases 2.11.0–2.15.0. The root cause is improper error handling in the transport_message_handler, which could enable an Application Processor (AP) to trigger a buffer overflow in SCP firmware. Documented impact indicates high con...
ARM SCP-Firmware 安全漏洞
ARM SCP-Firmware is a firmware driver from ARM UK. A security vulnerability exists in ARM SCP-Firmware versions 2.11.0-2.15.0, which stems from the failure of the transportmessagehandler function to properly handle errors, resulting in a buffer overflow...
CVE-2023-33101 Incorrect Type Conversion or Cast in Multi-Mode Call Processor
Transient DOS while processing DL NAS TRANSPORT message with payload length 0...
CVE-2023-33100 Improper input validation in Multi-Mode Call Processor
Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP specification...
CVE-2023-33096
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16...
CVE-2023-33096
CVE-2023-33096 is a DoS in Qualcomm chipsets caused by transient denial of service while processing a DL NAS Transport message (per 3GPP 24.501 v16). Affected: Qualcomm components/closed-source parts in mobile chipsets; impact is Availability (High), Network attack vector, no user interaction req...
CVE-2023-33096 Reachable Assertion in Multi-Mode Call Processor
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16...
CVE-2020-3670
Technical details are not publicly available in the provided documents. Monitor for updates.
CVE-2020-3670
u'Potential out of bounds read while processing downlink NAS transport message due to improper length check of Information ElementIEI NAS message container' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in Agatt...