NotCVE - vendor:"Qualcomm" product:"Qcn9074 Firmware"

Page 10 of 255 results (0.006 seconds)

CVSS: 7.0EPSS: 0%CPEs: 62EXPL: 0

CVE-2023-28576 – Time-of-check Time-of-use (TOCTOU) Race Condition in Camera Kernel Driver

https://notcve.org/view.php?id=CVE-2023-28576

08 Aug 2023 — The buffer obtained from kernel APIs such as cam_mem_get_cpu_buf() may be readable/writable in userspace after kernel accesses it. In other words, user mode may race and modify the packet header (e.g. header.count), causing checks (e.g. size checks) in kernel code to be invalid. This may lead to out-of-bounds read/write issues. El buffer obtenido de APIs del kernel como cam_mem_get_cpu_buf() puede ser legible/escribible en espacio de usuario después de que el kernel acceda a él. En otras palabras, el modo d... • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •

CVSS: 7.8EPSS: 0%CPEs: 120EXPL: 0

CVE-2023-28575 – Multiple Type Confusion Vulnerability

https://notcve.org/view.php?id=CVE-2023-28575

08 Aug 2023 — The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it. La función cam_get_device_priv no comprueba el tipo de manejador devuelto (device/session/link). Esto llevaría a un uso de tipo inválido si se le pasa un manejador incorrecto. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-823: Use of Out-of-range Pointer Offset CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 8.4EPSS: 0%CPEs: 366EXPL: 0

CVE-2023-28537 – Integer Overflow or Wraparound in Audio

https://notcve.org/view.php?id=CVE-2023-28537

08 Aug 2023 — Memory corruption while allocating memory in COmxApeDec module in Audio. Corrupción de memoria al asignar memoria en el módulo COmxApeDec en Audio. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •

CVSS: 8.4EPSS: 0%CPEs: 344EXPL: 0

CVE-2023-22666 – Integer Overflow or Wraparound in Audio

https://notcve.org/view.php?id=CVE-2023-22666

08 Aug 2023 — Memory Corruption in Audio while playing amrwbplus clips with modified content. Corrupción de memoria en audio al reproducir clips amrwbplus con contenido modificado. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 130EXPL: 0

CVE-2023-21649 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in WLAN

https://notcve.org/view.php?id=CVE-2023-21649

08 Aug 2023 — Memory corruption in WLAN while running doDriverCmd for an unspecific command. Corrupción de memoria en WLAN al ejecutar doDriverCmd para un comando no específico. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •

CVSS: 6.8EPSS: 0%CPEs: 86EXPL: 0

CVE-2023-21647 – Improper Input Validation in Bluetooth HOST

https://notcve.org/view.php?id=CVE-2023-21647

08 Aug 2023 — Information disclosure in Bluetooth when an GATT packet is received due to improper input validation. Revelación de información en Bluetooth cuando se recibe un paquete GATT debido a una validación de entrada incorrecta. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-20: Improper Input Validation •

CVSS: 10.0EPSS: 0%CPEs: 408EXPL: 0

CVE-2022-40510 – Buffer copy without checking size of input in Audio.

https://notcve.org/view.php?id=CVE-2022-40510

08 Aug 2023 — Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. Corrupción de memoria debida a la copia del búfer sin comprobar el tamaño de la entrada en Audio durante una llamada de voz con el vocoder EVS. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-457: Use of Uninitialized Variable CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 376EXPL: 0

CVE-2023-28542 – Buffer Over-read in WLAN HOST

https://notcve.org/view.php?id=CVE-2023-28542

04 Jul 2023 — Memory Corruption in WLAN HOST while fetching TX status information. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •

CVSS: 7.8EPSS: 0%CPEs: 398EXPL: 0

CVE-2023-28541 – Buffer Over-read in WLAN Host

https://notcve.org/view.php?id=CVE-2023-28541

04 Jul 2023 — Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •

CVSS: 7.8EPSS: 0%CPEs: 382EXPL: 0

CVE-2023-24851 – Buffer Copy Without Checking Size of Input in WLAN HOST

https://notcve.org/view.php?id=CVE-2023-24851

04 Jul 2023 — Memory Corruption in WLAN HOST while parsing QMI response message from firmware. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •

1...8 9 10 11 12