Nr16 Security Vulnerabilities and Issues — Nr16 CVE List

Lucene search

MediatekNr16

17 matches found

CVE•added 2024/01/02 3:15 a.m.•75 views

CVE-2023-32890

In modem EMM, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01183647; Issue ID: MOLY01183647 (MSV-963).

7.5CVSS7.4AI score0.00395EPSS

CVE•added 2025/03/03 3:15 a.m.•73 views

CVE-2025-20644

In Modem, there is a possible memory corruption due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Pa...

7.5CVSS6.9AI score0.0032EPSS

CVE•added 2024/06/03 2:15 a.m.•70 views

CVE-2024-20066

In modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is no needed for exploitation. Patch ID: MOLY01267281; Issue ID: MSV-1477.

7.5CVSS6.9AI score0.02697EPSS

CVE•added 2025/01/06 4:15 a.m.•70 views

CVE-2024-20150

In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01412526; Issue ID: MSV-2018.

7.5CVSS7.2AI score0.01314EPSS

CVE•added 2023/11/06 4:15 a.m.•57 views

CVE-2023-20702

In 5G NRLC, there is a possible invalid memory access due to lack of error handling. This could lead to remote denial of service, if UE received invalid 1-byte rlc sdu, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00921261; Issue ID:...

7.5CVSS7.5AI score0.01511EPSS

CVE•added 2023/12/04 4:15 a.m.•56 views

CVE-2023-32841

In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving malformed RRC messages, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01128524; Issue ID: MOLY011...

7.5CVSS7.4AI score0.01548EPSS

CVE•added 2023/12/04 4:15 a.m.•53 views

CVE-2023-32843

7.5CVSS7.4AI score0.01189EPSS

CVE•added 2023/12/04 4:15 a.m.•49 views

CVE-2023-32842

7.5CVSS7.4AI score0.04196EPSS

CVE•added 2024/01/02 3:15 a.m.•48 views

CVE-2023-32886

In Modem IMS SMS UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00730807; Issue ID: MOLY00730807.

7.5CVSS7.4AI score0.01076EPSS

CVE•added 2022/11/08 9:15 p.m.•45 views

CVE-2022-26446

In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when concatenating improper SIB12 (CMAS message), with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00867883;...

7.5CVSS7.5AI score0.01252EPSS

CVE•added 2025/05/05 3:15 a.m.•45 views

CVE-2025-20667

In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploi...

7.5CVSS6.2AI score0.00053EPSS

CVE•added 2024/01/02 3:15 a.m.•43 views

CVE-2023-32887

In Modem IMS Stack, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01161837; Issue ID: MOLY01161837 (MSV-892).

7.5CVSS7.3AI score0.01462EPSS

CVE•added 2024/01/02 3:15 a.m.•43 views

CVE-2023-32888

In Modem IMS Call UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01161830; Issue ID: MOLY01161830 (MSV-894).

7.5CVSS7.4AI score0.01968EPSS

CVE•added 2025/06/02 3:15 a.m.•38 views

CVE-2025-20678

In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. P...

7.5CVSS7AI score0.0021EPSS

CVE•added 2023/12/04 4:15 a.m.•36 views

CVE-2023-32845

7.5CVSS7.4AI score0.02168EPSS

CVE•added 2023/12/04 4:15 a.m.•33 views

CVE-2023-32846

7.5CVSS7.4AI score0.04196EPSS

CVE•added 2023/12/04 4:15 a.m.•32 views

CVE-2023-32844

7.5CVSS7.4AI score0.04196EPSS