libsec-ril
CVEs (20)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-42529 | Med | 0.44 | 6.7 | 0.00 | Nov 7, 2023 | Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code. | ||
| CVE-2023-42528 | Med | 0.44 | 6.7 | 0.00 | Nov 7, 2023 | Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30739 | Med | 0.44 | 6.7 | 0.00 | Nov 7, 2023 | Arbitrary File Descriptor Write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30694 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30693 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30689 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30688 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30687 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30686 | Med | 0.44 | 6.7 | 0.00 | Aug 10, 2023 | Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30670 | Med | 0.44 | 6.7 | 0.00 | Jul 6, 2023 | Out-of-bounds Write in BuildIpcFactoryDeviceTestEvent of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30669 | Med | 0.44 | 6.7 | 0.00 | Jul 6, 2023 | Out-of-bounds Write in DoOemFactorySendFactoryTestResult of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-30668 | Med | 0.44 | 6.7 | 0.00 | Jul 6, 2023 | Out-of-bounds Write in BuildOemSecureSimLockResponse of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code. | ||
| CVE-2023-52432 | Med | 0.38 | 5.9 | 0.00 | Mar 5, 2024 | Improper input validation in IpcTxSndSetLoopbackCtrl in libsec-ril prior to SMR Sep-2023 Release 1 allows local attackers to write out-of-bounds memory. | ||
| CVE-2023-42527 | Med | 0.36 | 5.6 | 0.00 | Nov 7, 2023 | Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information. | ||
| CVE-2023-30666 | Med | 0.34 | 5.3 | 0.00 | Jul 6, 2023 | Improper input validation vulnerability in DoOemImeiSetPreconfig in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds write. | ||
| CVE-2023-30663 | Med | 0.34 | 5.3 | 0.00 | Jul 6, 2023 | Improper input validation vulnerability in OemPersonalizationSetLock in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds write. | ||
| CVE-2023-30697 | Med | 0.29 | 4.4 | 0.00 | Aug 10, 2023 | An improper input validation in IpcTxCfgSetSimlockPayload in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write. | ||
| CVE-2023-30696 | Med | 0.29 | 4.4 | 0.00 | Aug 10, 2023 | An improper input validation in IpcTxGetVerifyAkey in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write. | ||
| CVE-2023-30665 | Med | 0.29 | 4.4 | 0.00 | Jul 6, 2023 | Improper input validation vulnerability in OnOemServiceMode in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds read. | ||
| CVE-2024-20842 | Med | 0.27 | 4.2 | 0.00 | Apr 2, 2024 | Improper Input Validation vulnerability in handling apdu of libsec-ril prior to SMR Apr-2024 Release 1 allows local privileged attackers to write out-of-bounds memory. |
- risk 0.44cvss 6.7epss 0.00
Out-of-bound write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Improper Input Validation vulnerability in ProcessNvBuffering of libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Arbitrary File Descriptor Write vulnerability in libsec-ril prior to SMR Nov-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in IpcTxPcscTransmitApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in DoOemFactorySendFactoryBypassCommand of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in BuildOemEmbmsGetSigStrengthResponse of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in MakeUiccAuthForOem of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in RmtUimApdu of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in ReqDataRaw of libsec-ril prior to SMR Aug-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in BuildIpcFactoryDeviceTestEvent of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in DoOemFactorySendFactoryTestResult of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.44cvss 6.7epss 0.00
Out-of-bounds Write in BuildOemSecureSimLockResponse of libsec-ril prior to SMR Jul-2023 Release 1 allows local attacker to execute arbitrary code.
- risk 0.38cvss 5.9epss 0.00
Improper input validation in IpcTxSndSetLoopbackCtrl in libsec-ril prior to SMR Sep-2023 Release 1 allows local attackers to write out-of-bounds memory.
- risk 0.36cvss 5.6epss 0.00
Improper input validation vulnerability in ProcessWriteFile of libsec-ril prior to SMR Nov-2023 Release 1 allows local attackers to expose sensitive information.
- risk 0.34cvss 5.3epss 0.00
Improper input validation vulnerability in DoOemImeiSetPreconfig in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds write.
- risk 0.34cvss 5.3epss 0.00
Improper input validation vulnerability in OemPersonalizationSetLock in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds write.
- risk 0.29cvss 4.4epss 0.00
An improper input validation in IpcTxCfgSetSimlockPayload in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.
- risk 0.29cvss 4.4epss 0.00
An improper input validation in IpcTxGetVerifyAkey in libsec-ril prior to SMR Aug-2023 Release 1 allows attacker to cause out-of-bounds write.
- risk 0.29cvss 4.4epss 0.00
Improper input validation vulnerability in OnOemServiceMode in libsec-ril prior to SMR Jul-2023 Release 1 allows local attackers to cause an Out-Of-Bounds read.
- risk 0.27cvss 4.2epss 0.00
Improper Input Validation vulnerability in handling apdu of libsec-ril prior to SMR Apr-2024 Release 1 allows local privileged attackers to write out-of-bounds memory.