📦 Ofono

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on oFono installations by exploiting a heap-based buffer overflow in the SimToolKit command parser. Attacke...

This is a stack-based buffer overflow vulnerability in oFono's SMS PDU decoder that allows local attackers to execute arbitrary code with service account privileges. Attackers need initial code execut...

This heap-based buffer overflow vulnerability in oFono's SimToolKit (STK) command parser allows local attackers with initial code execution on the target modem to escalate privileges and execute arbit...

This vulnerability in oFono allows local attackers to execute arbitrary code with root privileges by exploiting a stack-based buffer overflow in AT command response parsing. It affects systems running...

CVE-2023-4234 is a stack overflow vulnerability in ofono's SMS decoding function that allows remote code execution. Attackers can exploit this via SMS messages, compromised modems, or malicious base s...

CVE-2023-4232 is a stack overflow vulnerability in ofono's SMS decoding function that allows remote code execution. Attackers can exploit this via SMS messages, compromised modems, or malicious base s...

CVE-2023-2794 is a stack overflow vulnerability in ofono's SMS decoding function that allows remote code execution. It affects Linux systems using ofono for telephony services. Attackers could exploit...

This vulnerability in oFono's QMI SMS handling allows local attackers to read beyond allocated buffer boundaries, potentially disclosing sensitive information. Attackers could combine this with other ...