7.8
CVE-2024-23355 - Improper Restriction of Operations within the Bounds of a Memory Buffer in Automotive
Memory corruption when keymaster operation imports a shared key.
7.5
CVE-2024-23353 - Buffer Over-read in Multi Mode Call Processor
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI.
7.5
CVE-2024-23352 - Loop with Unreachable Exit Condition (`Infinite Loop`) in Multi Mode Call Processor
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA.
6.5
CVE-2024-23350 - Reachable Assertion in Multi Mode Call Processor
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network.
8.4
CVE-2024-21481 - Improper Restriction of Operations within the Bounds of a Memory Buffer in Hypervisor
Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.
7.5
CVE-2024-21479 - Buffer Over-read in Audio
Transient DOS during music playback of ALAC content.
6.5
CVE-2024-21467 - Buffer Over-read in WLAN Host Communication
Information disclosure while handling beacon probe frame during scan entry generation in client side.
6.5
CVE-2024-21459 - Buffer Over-read in WLAN HOST
Information disclosure while handling beacon or probe response frame in STA.
9.3
CVE-2024-7397 - Unauthenticated Command Injection
Improper filering of special characters result in a command ('command injection') vulnerability in Korenix JetPort 5601v3.This issue affects JetPort 5601v3: through 1.2.
7.1
CVE-2024-7396 - Plaintext Communication
Missing encryption of sensitive data in Korenix JetPort 5601v3 allows Eavesdropping.This issue affects JetPort 5601v3: through 1.2.