Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mobile infrastructure vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-31215
Mobile Security Framework (MobSF) is a security research platform for mobile applications in Android, iOS and Windows Mobile. A SSRF vulnerability in firebase database check logic. The attacker can cause the server to make a connection to internal-only services within the organiz...
NA
CVE-2024-29190
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In version 3.9.5 Beta and prior, MobSF does not perform any input validation when extracting the hostnames in `android:host`, ...
8.1
CVSSv3
CVE-2022-24401
Adversary-induced keystream re-use on TETRA air-interface encrypted traffic using any TEA keystream generator. IV generation is based upon several TDMA frame counters, which are frequently broadcast by the infrastructure in an unauthenticated manner. An active adversary can manip...
Midnightblue Tetra\\ Burst
2 Articles
7.5
CVSSv3
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Ietf Http 2.0
Nghttp2 Nghttp2
Netty Netty
Envoyproxy Envoy 1.27.0
Envoyproxy Envoy 1.26.4
Envoyproxy Envoy 1.25.9
Envoyproxy Envoy 1.24.10
Eclipse Jetty
Caddyserver Caddy
Golang Http2
Golang Go
Golang Networking
F5 Big-ip Analytics
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Local Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Global Traffic Manager
F5 Big-ip Fraud Protection Service
F5 Big-ip Domain Name System
F5 Big-ip Application Security Manager
F5 Big-ip Application Acceleration Manager
F5 Big-ip Advanced Firewall Manager
34 Github repositories
2 Articles
6.1
CVSSv3
CVE-2023-29656
An improper authorization vulnerability in Darktrace mobile app (Android) prior to version 6.0.15 allows disabled and low-privilege users to control "antigena" actions(block/unblock traffic) from the mobile application. This vulnerability could create a "shutdown&q...
Darktrace Threat Visualizer
1 Github repository
7.5
CVSSv3
CVE-2023-27532
Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts.
Veeam Veeam Backup \\& Replication 11.0.1.1261
Veeam Veeam Backup \\& Replication 12.0.0.1420
3 Github repositories
2 Articles
7.5
CVSSv3
CVE-2022-33235
Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapd...
Qualcomm Apq8009 Firmware -
Qualcomm Apq8096au Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Ar9380 Firmware -
Qualcomm Csr8811 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Ipq4018 Firmware -
Qualcomm Ipq4028 Firmware -
Qualcomm Ipq4029 Firmware -
Qualcomm Ipq5010 Firmware -
Qualcomm Ipq5018 Firmware -
Qualcomm Ipq5028 Firmware -
Qualcomm Ipq6000 Firmware -
Qualcomm Ipq6010 Firmware -
Qualcomm Ipq6018 Firmware -
Qualcomm Ipq6028 Firmware -
Qualcomm Ipq8064 Firmware -
Qualcomm Ipq8069 Firmware -
7.5
CVSSv3
CVE-2022-33238
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...
Qualcomm Apq8009 Firmware -
Qualcomm Apq8017 Firmware -
Qualcomm Apq8064au Firmware -
Qualcomm Apq8076 Firmware -
Qualcomm Apq8096au Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8031 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Ar9380 Firmware -
Qualcomm Csr8811 Firmware -
Qualcomm Csra6620 Firmware -
Qualcomm Csra6640 Firmware -
Qualcomm Csrb31024 Firmware -
Qualcomm Ipq4018 Firmware -
Qualcomm Ipq4019 Firmware -
Qualcomm Ipq4028 Firmware -
Qualcomm Ipq4029 Firmware -
Qualcomm Ipq5010 Firmware -
Qualcomm Ipq5018 Firmware -
Qualcomm Ipq5028 Firmware -
Qualcomm Ipq6000 Firmware -
Qualcomm Ipq6010 Firmware -
7.8
CVSSv3
CVE-2022-25677
Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
Qualcomm Apq8096au Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar9380 Firmware -
Qualcomm Csr8811 Firmware -
Qualcomm Ipq4018 Firmware -
Qualcomm Ipq4019 Firmware -
Qualcomm Ipq4028 Firmware -
Qualcomm Ipq4029 Firmware -
Qualcomm Ipq5010 Firmware -
Qualcomm Ipq5018 Firmware -
Qualcomm Ipq5028 Firmware -
Qualcomm Ipq6000 Firmware -
Qualcomm Ipq6010 Firmware -
Qualcomm Ipq6018 Firmware -
Qualcomm Ipq6028 Firmware -
Qualcomm Ipq8064 Firmware -
Qualcomm Ipq8065 Firmware -
Qualcomm Ipq8068 Firmware -
Qualcomm Ipq8070 Firmware -
Qualcomm Ipq8070a Firmware -
Qualcomm Ipq8071a Firmware -
Qualcomm Ipq8072a Firmware -
7.5
CVSSv3
CVE-2022-33236
Transient DOS due to buffer over-read in WLAN firmware while parsing cipher suite info attributes. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
Qualcomm Ar8035 Firmware -
Qualcomm Csr8811 Firmware -
Qualcomm Ipq5010 Firmware -
Qualcomm Ipq5018 Firmware -
Qualcomm Ipq5028 Firmware -
Qualcomm Ipq6000 Firmware -
Qualcomm Ipq6010 Firmware -
Qualcomm Ipq6018 Firmware -
Qualcomm Ipq6028 Firmware -
Qualcomm Ipq8070a Firmware -
Qualcomm Ipq8071a Firmware -
Qualcomm Ipq8072a Firmware -
Qualcomm Ipq8074a Firmware -
Qualcomm Ipq8076 Firmware -
Qualcomm Ipq8076a Firmware -
Qualcomm Ipq8078 Firmware -
Qualcomm Ipq8078a Firmware -
Qualcomm Ipq8173 Firmware -
Qualcomm Ipq8174 Firmware -
Qualcomm Ipq9008 Firmware -
Qualcomm Qca4024 Firmware -
Qualcomm Qca6390 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2024-5274
CVE-2020-17519
CVE-2024-35340
CVE-2021-47558
local
XML injection
CVE-2021-47519
CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »