Modem
by Qualcomm
CVEs (45)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-21653 | Hig | 0.49 | 7.5 | 0.00 | Sep 5, 2023 | Transient DOS in Modem while processing RRC reconfiguration message. | ||
| CVE-2023-21646 | Hig | 0.49 | 7.5 | 0.00 | Sep 5, 2023 | Transient DOS in Modem while processing invalid System Information Block 1. | ||
| CVE-2023-21631 | Hig | 0.49 | 7.5 | 0.00 | Jul 4, 2023 | Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. | ||
| CVE-2022-40538 | Hig | 0.49 | 7.5 | 0.00 | Jun 6, 2023 | Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network. | ||
| CVE-2022-40536 | Hig | 0.49 | 7.5 | 0.00 | Jun 6, 2023 | Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network. | ||
| CVE-2022-40521 | Hig | 0.49 | 7.5 | 0.00 | Jun 6, 2023 | Transient DOS due to improper authorization in Modem | ||
| CVE-2022-33251 | Hig | 0.49 | 7.5 | 0.00 | Jun 6, 2023 | Transient DOS due to reachable assertion in Modem because of invalid network configuration. | ||
| CVE-2022-40504 | Hig | 0.49 | 7.5 | 0.00 | May 2, 2023 | Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. | ||
| CVE-2022-40508 | Hig | 0.49 | 7.5 | 0.00 | May 2, 2023 | Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported. | ||
| CVE-2022-34144 | Hig | 0.49 | 7.5 | 0.00 | May 2, 2023 | Transient DOS due to reachable assertion in Modem during OSI decode scheduling. | ||
| CVE-2022-33305 | Hig | 0.49 | 7.5 | 0.00 | May 2, 2023 | Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH. | ||
| CVE-2022-33304 | Hig | 0.49 | 7.5 | 0.00 | May 2, 2023 | Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet. | ||
| CVE-2022-33294 | Hig | 0.49 | 7.5 | 0.00 | Apr 13, 2023 | Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message. | ||
| CVE-2022-33270 | Hig | 0.49 | 7.5 | 0.00 | Apr 13, 2023 | Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message. | ||
| CVE-2022-33223 | Hig | 0.49 | 7.5 | 0.00 | Apr 13, 2023 | Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding. | ||
| CVE-2022-33272 | Hig | 0.49 | 7.5 | 0.00 | Mar 10, 2023 | Transient DOS in modem due to reachable assertion. | ||
| CVE-2022-33254 | Hig | 0.49 | 7.5 | 0.00 | Mar 10, 2023 | Transient DOS due to reachable assertion in Modem while processing SIB1 Message. | ||
| CVE-2022-33250 | Hig | 0.49 | 7.5 | 0.00 | Mar 10, 2023 | Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover. | ||
| CVE-2022-33244 | Hig | 0.49 | 7.5 | 0.00 | Mar 10, 2023 | Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout | ||
| CVE-2022-33213 | Hig | 0.49 | 7.5 | 0.00 | Mar 10, 2023 | Memory corruption in modem due to buffer overflow while processing a PPP packet |
- risk 0.49cvss 7.5epss 0.00
Transient DOS in Modem while processing RRC reconfiguration message.
- risk 0.49cvss 7.5epss 0.00
Transient DOS in Modem while processing invalid System Information Block 1.
- risk 0.49cvss 7.5epss 0.00
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to improper authorization in Modem
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to reachable assertion in Modem because of invalid network configuration.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to reachable assertion in Modem during OSI decode scheduling.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet.
- risk 0.49cvss 7.5epss 0.00
Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message.
- risk 0.49cvss 7.5epss 0.00
Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding.
- risk 0.49cvss 7.5epss 0.00
Transient DOS in modem due to reachable assertion.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to reachable assertion in Modem while processing SIB1 Message.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover.
- risk 0.49cvss 7.5epss 0.00
Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout
- risk 0.49cvss 7.5epss 0.00
Memory corruption in modem due to buffer overflow while processing a PPP packet
Page 2 of 3