CPE Details
Qualcomm 9207 LTE Modem
-
2023-04-20
09h34 +00:00
09h34 +00:00
2023-08-29
10h26 +00:00
10h26 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
CPE Name: cpe:2.3:h:qualcomm:9207_lte_modem:-:*:*:*:*:*:*:*
Informations
Vendor
qualcommProduct
9207_lte_modemVersion
-Related CVE
| CVE ID | Publié | Description | Score | Gravité |
|---|---|---|---|---|
| Memory corruption when allocating and accessing an entry in an SMEM partition continuously. | 8.4 |
Haute |
||
| Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. | 7.5 |
Haute |
||
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. | 9.1 |
Critique |
||
| Memory corruption in Audio while processing RT proxy port register driver. | 8.4 |
Haute |
||
| Memory corruption in Audio during playback with speaker protection. | 8.4 |
Haute |
||
| Memory corruption in HLOS while running playready use-case. | 9.3 |
Critique |
||
| Memory corruption while using the UIM diag command to get the operators name. | 7.8 |
Haute |
||
| Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. | 7.8 |
Haute |
||
| Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments. | 7.8 |
Haute |
||
| Memory corruption in MPP performance while accessing DSM watermark using external memory address. | 7.8 |
Haute |
||
| Memory Corruption in Multi-mode Call Processor while processing bit mask API. | 9.8 |
Critique |
||
| Information Disclosure in data Modem while parsing an FMTP line in an SDP message. | 8.2 |
Haute |
||
| Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. | 8.2 |
Haute |
||
| Memory Corruption in Data Modem while making a MO call or MT VOLTE call. | 9.8 |
Critique |
||
| Transient DOS due to improper authorization in Modem | 7.5 |
Haute |
||
| Memory corruption due to double free in Core while mapping HLOS address to the list. | 8.4 |
Haute |
||
| Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. | 7.9 |
Haute |
||
| information disclosure due to cryptographic issue in Core during RPMB read request. | 7.1 |
Haute |
||
| Information disclosure due to buffer over-read in Modem while parsing DNS hostname. | 8.2 |
Haute |
||
| Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet. | 7.5 |
Haute |
||
| Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. | 7.8 |
Haute |
||
| Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length. | 8.2 |
Haute |
||
| Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. | 6.8 |
Moyen |
||
| Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet. | 8.2 |
Haute |
Les informations affichées sur CVE Find proviennent de plusieurs sources de référence rigoureusement sélectionnées. Les données CVE sont fournies par MITRE Corporation et la National Vulnerability Database (NVD). Le catalogue des vulnérabilités activement exploitées (KEV) provient de la Cybersecurity and Infrastructure Security Agency (CISA), tandis que les scores EPSS sont issus de FIRST.org. Enfin, les données relatives aux faiblesses logicielles (CWE) et aux schémas d'attaque courants (CAPEC)
sont maintenues par MITRE Corporation, et les informations sur les configurations
logicielles et matérielles (CPE) proviennent du NVD.