Sm4250-Aa Firmware Security Vulnerabilities - CVSS Score 9 - 10

CVE-2022-33231

Memory corruption due to double free in core while initializing the encryption key.

CVE-2023-28540

Cryptographic issue in Data Modem due to improper authentication during TLS handshake.