CVE-2021-25480

Summary

A lack of replay attack protection in GUTI REALLOCATION COMMAND message process in Qualcomm modem prior to SMR Oct-2021 Release 1 can lead to remote denial of service on mobile network connection.

Affected Software

VendorProductVersion RangeStatus
Samsung MobileSamsung Mobile DevicesO(8.1), P(9.0), Q(10.0), R(11.0) < SMR Oct-2021 Release 1affected

Weaknesses

  • CWE-294: CWE-294: Authentication Bypass by Capture-replay

ADP Enrichment

CVE Program Container

Additional References

References