Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imei vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-9064
In all Qualcomm products with Android releases from CAF using the Linux kernel, the UE can send IMEI or IMEISV to the network on a network request before NAS security has been activated.
Google Android
5.5
CVSSv3
CVE-2020-0331
In Settings, there is a possible permissions bypass. This could lead to local information disclosure of the device's IMEI with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-147309310
Google Android 11.0
4.3
CVSSv3
CVE-2016-11050
An issue exists on Samsung mobile devices with S3(KK), Note2(KK), S4(L), Note3(L), and S5(L) software. An attacker can rewrite the IMEI by flashing crafted firmware. The Samsung ID is SVE-2016-5562 (March 2016).
Samsung S5 Firmware -
Samsung Note3 Firmware -
Samsung S4 Firmware -
Samsung Note2 Firmware -
Samsung S3 Firmware -
9.1
CVSSv3
CVE-2016-11049
An issue exists on Samsung mobile devices with software through 2016-01-16 (Shannon333/308/310 chipsets). The IMEI may be retrieved and modified because of an error in managing key information. The Samsung ID is SVE-2016-5435 (March 2016).
Google Android -
9.8
CVSSv3
CVE-2019-16256
Some Samsung devices include the SIMalliance Toolbox Browser (aka S@T Browser) on the UICC, which might allow remote malicious users to retrieve location and IMEI information, or retrieve other data or execute certain commands, via SIM Toolkit (STK) instructions in an SMS message...
Samsung Samsung Firmware -
7.5
CVSSv3
CVE-2017-5239
Due to a lack of standard encryption when transmitting sensitive information over the internet to a centralized monitoring service, the Eview EV-07S GPS Tracker discloses personally identifying information, such as GPS data and IMEI numbers, to any man-in-the-middle (MitM) listen...
Eviewgps Ev-07s Gps Tracker Firmware -
9.8
CVSSv3
CVE-2019-16257
Some Motorola devices include the SIMalliance Toolbox Browser (aka S@T Browser) on the UICC, which might allow remote malicious users to retrieve location and IMEI information, or retrieve other data or execute certain commands, via SIM Toolkit (STK) instructions in an SMS messag...
Motorola Motorola Firmware -
5.5
CVSSv3
CVE-2021-41849
An issue exists in Luna Simo PPR1.180610.011/202001031830. It sends the following Personally Identifiable Information (PII) in plaintext using HTTP to servers located in China: user's list of installed apps and device International Mobile Equipment Identity (IMEI). This PII ...
Bluproducts G90 Firmware -
Bluproducts G9 Firmware -
Wikomobile Tommy 3 Firmware -
Wikomobile Tommy 3 Plus Firmware -
Luna Simo Firmware -
9.8
CVSSv3
CVE-2020-3692
u'Possible buffer overflow while updating output buffer for IMEI and Gateway Address due to lack of check of input validation for parameters received from server' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobi...
Qualcomm Agatti Firmware -
Qualcomm Kamorta Firmware -
Qualcomm Nicobar Firmware -
Qualcomm Qcm6125 Firmware -
Qualcomm Qcs610 Firmware -
Qualcomm Rennell Firmware -
Qualcomm Sa415m Firmware -
Qualcomm Saipan Firmware -
Qualcomm Sc7180 Firmware -
Qualcomm Sc8180x Firmware -
Qualcomm Sdx24 Firmware -
Qualcomm Sdx55 Firmware -
Qualcomm Sm6150 Firmware -
Qualcomm Sm7150 Firmware -
Qualcomm Sm8150 Firmware -
Qualcomm Sm8250 Firmware -
Qualcomm Sxr2130 Firmware -
5.5
CVSSv3
CVE-2019-11419
vcodec2_hls_filter in libvoipCodec_v7a.so in the WeChat application up to and including 7.0.3 for Android allows malicious users to cause a denial of service (application crash) by replacing an emoji file (under the /sdcard/tencent/MicroMsg directory) with a crafted .wxgf file. T...
Tencent Wechat
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »