{"vulnerability": "CVE-2024-2507", "sightings": [{"uuid": "c6b630bf-3efb-44a5-bdc1-5ebb15440475", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25075", "type": "seen", "source": "https://bsky.app/profile/c1b3r53cur1ty.bsky.social/post/3lnki7fet242b", "content": "", "creation_timestamp": "2025-04-24T10:18:41.891874Z"}, {"uuid": "cc27c076-819b-495e-8908-51610844d331", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25073", "type": "seen", "source": "https://t.me/cvedetector/5248", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-25073 - Samsung Exynos Untrusted Pointer Dereference Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-25073 \nPublished : Sept. 10, 2024, 3:15 p.m. | 45\u00a0minutes ago \nDescription : An issue was discovered in Samsung Semiconductor Mobile Processor, Automotive Processor, and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos W930, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check a pointer specified by the CC (Call Control module), which can lead to Denial of Service (Untrusted Pointer Dereference). \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-10T18:25:20.000000Z"}, {"uuid": "250529d8-37d6-4991-8d2d-4e5ce55d340d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25074", "type": "seen", "source": "https://t.me/cvedetector/5251", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-25074 - Samsung Semiconductor Exynos Baseband Untrusted Pointer Dereference\", \n  \"Content\": \"CVE ID : CVE-2024-25074 \nPublished : Sept. 10, 2024, 3:15 p.m. | 45\u00a0minutes ago \nDescription : An issue was discovered in Samsung Semiconductor Mobile Processor, Automotive Processor, and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos W930, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check a pointer specified by the SM (Session Management module), which can lead to Denial of Service (Untrusted Pointer Dereference). \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-10T18:25:23.000000Z"}, {"uuid": "12439904-4ce7-496a-8661-6e3208c2a21f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25076", "type": "seen", "source": "https://t.me/cvedetector/590", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-25076 - An issue was discovered on Renesas SmartBond DA146\", \n  \"Content\": \"CVE ID : CVE-2024-25076 \nPublished : July 10, 2024, 8:15 p.m. | 17\u00a0minutes ago \nDescription : An issue was discovered on Renesas SmartBond DA14691, DA14695, DA14697, and DA14699 devices. The bootrom function responsible for validating the Flash Product Header directly uses a user-controllable size value (Length of Flash Config Section) to control a read from the QSPI device into a fixed sized buffer, resulting in a buffer overflow and execution of arbitrary code. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-10T22:39:35.000000Z"}, {"uuid": "2334323c-b1c0-4760-9a5e-9563c4761b8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25077", "type": "seen", "source": "https://t.me/cvedetector/589", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-25077 - An issue was discovered on Renesas SmartBond DA146\", \n  \"Content\": \"CVE ID : CVE-2024-25077 \nPublished : July 10, 2024, 8:15 p.m. | 17\u00a0minutes ago \nDescription : An issue was discovered on Renesas SmartBond DA14691, DA14695, DA14697, and DA14699 devices. The Nonce used for on-the-fly decryption of flash images is stored in an unsigned header, allowing its value to be modified without invalidating the signature used for secureboot image verification. Because the encryption engine for on-the-fly decryption uses AES in CTR mode without authentication, an attacker-modified Nonce can result in execution of arbitrary code. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-10T22:39:34.000000Z"}]}