VYPR

rpm package

opensuse/ofono&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/ofono&distro=openSUSE%20Tumbleweed

Vulnerabilities (11)

  • CVE-2024-7546HigAug 6, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploi

  • CVE-2024-7544HigAug 6, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploi

  • CVE-2024-7543HigAug 6, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploi

  • CVE-2024-7541LowAug 6, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    oFono AT CMT Command Uninitialized Variable Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order

  • CVE-2024-7540LowAug 6, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    oFono AT CMGL Command Uninitialized Variable Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in orde

  • CVE-2024-7539HigAug 6, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    oFono CUSD Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit this vuln

  • CVE-2024-7538HigAug 6, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    oFono CUSD AT Command Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploi

  • CVE-2024-7537MedAug 6, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    oFono QMI SMS Handling Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of oFono. Authentication is not required to exploit this vulnerability. The specific flaw exists

  • CVE-2023-4234HigApr 17, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_submit_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS

  • CVE-2023-4232HigApr 17, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_status_report() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS

  • CVE-2023-2794HigApr 10, 2024
    affected < 2.19-3.1fixed 2.19-3.1

    A flaw was found in ofono, an Open Source Telephony on Linux. A stack overflow bug is triggered within the decode_deliver() function during the SMS decoding. It is assumed that the attack scenario is accessible from a compromised modem, a malicious base station, or just SMS. Ther