CVE-2022-33305 – Null pointer dereference in Modem
https://notcve.org/view.php?id=CVE-2022-33305
Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH. • https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVE-2022-33281 – Improper validation of array index in computer vision.
https://notcve.org/view.php?id=CVE-2022-33281
Memory corruption due to improper validation of array index in computer vision while testing EVA kernel without sending any frames. • https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin • CWE-129: Improper Validation of Array Index •
CVE-2022-25713 – Improper Restriction of Operations within the Bounds of a Memory Buffer in Automotive
https://notcve.org/view.php?id=CVE-2022-25713
Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key. • https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2023-21630 – Integer Overflow in Multimedia Framework
https://notcve.org/view.php?id=CVE-2023-21630
Memory Corruption in Multimedia Framework due to integer overflow when synx bind is called along with synx signal. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-191: Integer Underflow (Wrap or Wraparound) •
CVE-2022-40532 – Integer overflow or wraparound in WLAN
https://notcve.org/view.php?id=CVE-2022-40532
Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-190: Integer Overflow or Wraparound •