Nr17

This hub aggregates every CVE we track for Nr17, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.

ICS / OT / IoTembeddedfirmware

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

MEDIUM23HIGH20CRITICAL5

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 15 most recently published vulnerabilities affecting Nr17.

CVE-2026-20434In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the a...7.5Mar 2, 2026
CVE-2026-20406In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with ...6.5Feb 2, 2026
CVE-2026-20405In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with...6.5Feb 2, 2026
CVE-2026-20404In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, w...6.5Feb 2, 2026
CVE-2026-20403In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with...6.5Feb 2, 2026
CVE-2026-20422In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, w...6.5Feb 2, 2026
CVE-2026-20420In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, wi...6.5Feb 2, 2026
CVE-2025-20760In Modem, there is a possible read of uninitialized heap data due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by ...6.5Jan 6, 2026
CVE-2025-20761In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, wi...6.5Jan 6, 2026
CVE-2025-20762In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, wi...6.5Jan 6, 2026
CVE-2025-20793In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, wi...6.5Jan 6, 2026
CVE-2025-20794In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, w...6.5Jan 6, 2026
CVE-2025-20752In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with...6.5Dec 2, 2025
CVE-2025-20758In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with ...4.9Dec 2, 2025
CVE-2025-20754In Modem, there is a possible system crash due to an incorrect bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, w...5.3Dec 2, 2025

Product normalization is registry-driven with AI assist and human review. How it works