Critical Vulnerability Identified in UNISOC Modem Firmware

A critical vulnerability has been identified in UNISOC modem firmware. The flaw allows an attacker to remotely target another device over the cellular network by sending malformed SDP within SIP signaling messages. This can cause memory corruption in the victim’s modem, potentially enabling remote execution of arbitrary native code. The attack is conducted between User Equipment (UE) devices.