CVSS: 8.4EPSS: 0%CPEs: 260EXPL: 0CVE-2023-28538 – Stack-based Buffer Overflow in WIN Product
https://notcve.org/view.php?id=CVE-2023-28538
05 Sep 2023 — Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI region. Corrupción de la memoria en el producto WIN al invocar el controlador de actualización WinAcpi en la región UEFI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 376EXPL: 0CVE-2023-28542 – Buffer Over-read in WLAN HOST
https://notcve.org/view.php?id=CVE-2023-28542
04 Jul 2023 — Memory Corruption in WLAN HOST while fetching TX status information. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 326EXPL: 0CVE-2023-24854 – Stack-based Buffer Overflow in WLAN HOST
https://notcve.org/view.php?id=CVE-2023-24854
04 Jul 2023 — Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 382EXPL: 0CVE-2023-24851 – Buffer Copy Without Checking Size of Input in WLAN HOST
https://notcve.org/view.php?id=CVE-2023-24851
04 Jul 2023 — Memory Corruption in WLAN HOST while parsing QMI response message from firmware. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 412EXPL: 0CVE-2023-22667 – Integer Overflow or Wraparound in Audio
https://notcve.org/view.php?id=CVE-2023-22667
04 Jul 2023 — Memory Corruption in Audio while allocating the ion buffer during the music playback. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 542EXPL: 0CVE-2023-22387 – Use of Out-of-range Pointer Offset in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2023-22387
04 Jul 2023 — Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.8EPSS: 0%CPEs: 402EXPL: 0CVE-2023-22386 – Buffer Copy Without Checking Size of Input in WLAN HOST
https://notcve.org/view.php?id=CVE-2023-22386
04 Jul 2023 — Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 114EXPL: 0CVE-2023-21672 – Use After Free in Audio
https://notcve.org/view.php?id=CVE-2023-21672
04 Jul 2023 — Memory corruption in Audio while running concurrent tunnel playback or during concurrent audio tunnel recording sessions. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 320EXPL: 0CVE-2023-21631 – Improper Input Validation in Modem
https://notcve.org/view.php?id=CVE-2023-21631
04 Jul 2023 — Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-20: Improper Input Validation •
CVSS: 7.2EPSS: 0%CPEs: 424EXPL: 0CVE-2023-21629 – Double Free in Modem
https://notcve.org/view.php?id=CVE-2023-21629
04 Jul 2023 — Memory Corruption in Modem due to double free while parsing the PKCS15 sim files. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-415: Double Free •