Remote Denial of Service Vulnerability in Modem 4G RRC

Remote Denial of Service Vulnerability in Modem 4G RRC

CVE-2022-26446 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when concatenating improper SIB12 (CMAS message), with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00867883; Issue ID: ALPS07274118.

Learn more about our User Device Pen Test.