CVE-2023-21631

Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.

CVE-2018-11922

Wrong configuration in Touch Pal application can collect user behavior data without awareness by the user.