* CVE-2024-25377, CVE-2024-29420, CVE-2024-34043, CVE-2024-34044, CVE-2024-34045, CVE2024-34046, CVE-2024-34047, CVE-2024-34048, CVE-2023-52724, CVE-2023-52725, CVE-2023-52726, CVE-2023-52727, CVE-2023-52728, CVE-2024-34049, CVE-2024-34050.

* CVD-2023-0081: GSMA Acknowledgment (known as Mobile Security Research Hall of Fame)
* CVE-2023-52533, CVE-2023-52534, CVE-2023-52341, CVE-2023-52343, CVE-2023-52342, CVE-2023- 52344, CVE-2024-28818, CVE-2024-29152, CVE-2023-50803, * CVE-2023-49927, CVE-2023-49928, CVE2023-50804
* Samsung acknowledged us in the Samsung Product Security Update for helping them identify and fix several vulnerabilities in 5G baseband
* Unisoc acknowledged us in Unisoc Product Security Acknowledgements for helping them identify and fix vulnerabilities in Unisoc 5G baseband implementations
* $14,250 bug bounty from Google
* $5,700 bug bounty from Samsung

CVD-2023-0071

CVD-2023-0069

CVE-2022-45190 , HWPSIRT-2022-56262, CVE-2022-45189, HWPSIRT-2022-13244, CVE-2022-40480, CVE-2022-41768 , CVE-2022-45192 , HWPSIRT-2022-96208, CVE-2022-45191

CVE-2021-25471 (Samsung), CVE-2021-25480 (Samsung), CVE-2021-40148 (MediaTek): Vulnerabilities in the baseband implementations of Samsung and MediaTek cellular modems.

CVE-2019-16400: Samsung phones accept AT commands over Bluetooth resulting in several Denial of Service (DoS) attacks.
CVE-2019-16401: Samsung phones accept AT commands over Bluetooth resulting in exposure of sensitive information, such as IMSI, IMEI, call status, and Internet service status.

The attacks have been uncovered using our proposed formal verification framework 5GReasoner.

ToRPEDO, PIERCER and IMSI-Cracking exploiting side-channel vulnerabilities in 4G and 5G networks.

The attacks uncovered by LTEInspector have been reported to the affected vendors and network operators. Few of the vulnerabilities got fixed, whereas, for others, the protocol requires a major overhaul.