17 matches found
CVE-2026-10629
SIP signaling stack in Verizon IMS unspecified version implements SIP signaling without IPsec integrity protection missing Security-Client/Security-Server headers and ESP traffic, which allows an on-path attacker to compromise confidentiality, integrity, and authenticity of VoLTE signaling via...
CVE-2026-10629
SIP signaling stack in Verizon IMS unspecified version implements SIP signaling without IPsec integrity protection missing Security-Client/Security-Server headers and ESP traffic, which allows an on-path attacker to compromise confidentiality, integrity, and authenticity of VoLTE signaling via...
CVE-2026-10629
SIP signaling stack in Verizon IMS unspecified version implements SIP signaling without IPsec integrity protection missing Security-Client/Security-Server headers and ESP traffic, which allows an on-path attacker to compromise confidentiality, integrity, and authenticity of VoLTE signaling via...
CVE-2026-10629
CVE-2026-10629 concerns Verizon IMS SIP signaling lacking IPsec integrity protection. The SIP signaling stack (unspecified Verizon IMS version) reportedly sends SIP messages without ESP encapsulation or Security-Client/Security-Server headers, exposing REGISTER, INVITE, MESSAGE, BYE, UPDATE, and ...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a potential information disclosure when receiving invalid RTCP packets during a VoLTE/VoWiFi IMS call...
O2 VoLTE 安全漏洞
O2 VoLTE is a way for O2 UK to make phone calls over a mobile network via an internet-based protocol. A security vulnerability exists in O2 VoLTE version 2025-05-17 and earlier, which stems from an ECI leak...
PT-2024-12379 · Unknown · Hypervisor
Name of the Vulnerable Software and Affected Versions: Hypervisor affected versions not specified Description: The issue involves a permanent denial of service DOS in the Hypervisor when an untrusted virtual machine VM without Power State Coordination Interface PSCI support makes a PSCI call. Thi...
CVE-2023-49699
Memory Corruption in IMS while calling VoLTE Streamingmedia Interface...
PT-2023-31301 · Asr +1 · Falcon +2
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns a memory corruption problem in the IMS IP Multimedia Subsystem when calling the VoLTE Voice over LTE Streaming media Interface. No...
Asrmicro ASR1803 and ASR1806 Buffer Error Vulnerability
The Asrmicro ASR1803 and Asrmicro ASR1806 are chips from China's Avantage Technology Asrmicro. A security vulnerability exists in the Asrmicro ASR1803 and ASR1806, which is caused by a memory corruption in the IMS when calling the VoLTE streaming interface...
Qualcomm Chip Security Breach
A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and is often manufactured on the surface of semiconductor wafers. The Qualcomm chip suffers from a security vulnerability that stems from...
PT-2023-19822 · Unknown · Data Modem
Name of the Vulnerable Software and Affected Versions: Data Modem affected versions not specified Description: The issue is related to Information Disclosure in the Data Modem when performing a VoLTE call with an undefined RTCP FB line value. Recommendations: At the moment, there is no informatio...
PT-2023-18477 · Unknown · Data Modem
Name of the Vulnerable Software and Affected Versions: Data Modem affected versions not specified Description: The issue is related to memory corruption in the Data Modem when making a MO call or MT VOLTE call. Recommendations: At the moment, there is no information about a newer version that...
Google reveals 18 chip vulnerabilities threatening mobile, wearables, vehicles
Googles Project Zero is warning of multiple significant vulnerabilities found across many models of mobile devices including Samsung Galaxy, Google Pixel, Vivo, and several forms of wearable and vehicles using certain types of components. Between late 2022 and early 2023, Project Zero reported 18...
Vulnerabilities discovered in mobile devices with Samsung Exynos Modem
Google Project Zero has discovered fourteen vulnerabilities in Samsung Exynos Modems. These modems are used in at least the following mobile devices: Samsung: S22, M33, M13, M12, A71, A53, A33, A21s, A13, A12 and A04 Vivo: S16, S15, S6, X70, X60 and X30 Google: Pixel 6 and Pixel 7 It is possible...
The vulnerability of the Qualcomm VoLTE Call Handler component in the Android operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the Qualcomm VoLTE Call Handler component in the Android operating system arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...
4G VoLTE the presence of the vulnerability can cause the phone user's location and other personal information disclosure-vulnerability warning-the black bar safety net
! In recent years, 4G VoLTE in the global field of mobile communications is increasingly popular popular, has now become the most European Region and Asian countries of the trend. And recently, the French security company P1 security by reporting a detailed list of a long string on 4G VoLTE call...