Reported Vulnerabilities

2023

3 new vulnerabilities in the NAS and RRC layers of 5G networks

2023

6 new vulnerabilities in 5G core network's access control mechanism

2023

10 new vulnerabilities in the Bluetooth Low Energy (BLE) implementations

CVE-2022-45190 , HWPSIRT-2022-56262, CVE-2022-45189, HWPSIRT-2022-13244, CVE-2022-40480, CVE-2022-41768 , CVE-2022-45192 , HWPSIRT-2022-96208, CVE-2022-45191

Reported Vulnerabilities
2021

3 new vulnerabilities in the NAS layer of 4G and 5G networks.

CVE-2021-25471 (Samsung), CVE-2021-25480 (Samsung), CVE-2021-40148 (MediaTek): Vulnerabilities in the baseband implementations of Samsung and MediaTek cellular modems.

GSMA's acknowledgement by the induction in Mobile Security Hall of Fame (CVD-2021-0050)
2019

Vulnerabilities in the AT interface of cellular modem.

CVE-2019-16400: Samsung phones accept AT commands over Bluetooth resulting in several Denial of Service (DoS) attacks.
CVE-2019-16401: Samsung phones accept AT commands over Bluetooth resulting in exposure of sensitive information, such as IMSI, IMEI, call status, and Internet service status.

GSMA's acknowledgement by the induction in Mobile Security Hall of Fame (CVD-2021-0050)
2019

11 new vulnerabilities in 5G networks

The attacks have been uncovered using our proposed formal verification framework 5GReasoner.

GSMA's acknowledgement by the induction in Mobile Security Hall of Fame (CVD-2019-0029)
2019

3 new vulnerabilities in 4G and 5G networks

ToRPEDO, PIERCER and IMSI-Cracking exploiting side-channel vulnerabilities in 4G and 5G networks.

GSMA's acknowledgement by the induction in Mobile Security Hall of Fame (CVD-2018-0014)
2018

10 new vulnerabilities in 4G LTE networks

The attacks uncovered by LTEInspector have been reported to the affected vendors and network operators. Few of the vulnerabilities got fixed, whereas, for others, the protocol requires a major overhaul.