Source code: https://github.com/SyNSec-den/5GBaseChecker
Reported 13 new 0-day vulnerabilities in 5G commercial basebands, 2024
- CVD-2023-0081: GSMA Acknowledgment (known as Mobile Security Research Hall of Fame)
- CVE-2023-52533, CVE-2023-52534, CVE-2023-52341, CVE-2023-52343, CVE-2023-52342, CVE-2023- 52344, CVE-2024-28818, CVE-2024-29152, CVE-2023-50803, CVE-2023-49927, CVE-2023-49928, CVE2023-50804
- Samsung acknowledged us in the Samsung Product Security Update for helping them identify and fix several vulnerabilities in 5G baseband
- Unisoc acknowledged us in Unisoc Product Security Acknowledgements for helping them identify and fix vulnerabilities in Unisoc 5G baseband implementations
- $14,250 bug bounty from Google
- $5,700 bug bounty from Samsung
News:
- Your Phone’s 5G Connection Is Vulnerable to Bypass, DoS Attacks: https://www.darkreading.com/mobile-security/your-phone-s-5g-connection-is-exposed-to-bypass-dos-attacks
- Hackers could spy on cell phone users by abusing 5G baseband flaws, researchers say: https://techcrunch.com/2024/08/07/hackers-could-spy-on-cellphone-users-by-abusing-5g-baseband-flaws-researchers-say/
- https://www.newsbytesapp.com/news/science/5g-baseband-flaws-could-let-hackers-spy-on-users/story: https://www.newsbytesapp.com/news/science/5g-baseband-flaws-could-let-hackers-spy-on-users/story
- Hackers could exploit major 5G baseband security flaw, researchers say: https://readwrite.com/hackers-5g-baseband-security-flaw/
- The hole is safe. Smartphones of five brands were at risk due to 5G communication problem: https://thetimeshub.in/the-hole-is-safe-smartphones-of-five-brands-were-at-risk-due-to-5g-communication-problems/