CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-22436 – The kernel subsystem function check_permission_for_set_tokenid has an UAF vulnerability.
https://notcve.org/view.php?id=CVE-2023-22436
The kernel subsystem function check_permission_for_set_tokenid within OpenHarmony-v3.1.5 and prior versions has an UAF vulnerability which local attackers can exploit this vulnerability to escalate the privilege to root. • https://gitee.com/openharmony/security/blob/master/en/security-disclosure/2023/2023-02.md • CWE-190: Integer Overflow or Wraparound CWE-416: Use After Free •
CVSS: 8.4EPSS: 0%CPEs: 378EXPL: 0CVE-2022-40530 – Integer overflow to buffer overflow in WLAN
https://notcve.org/view.php?id=CVE-2022-40530
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 402EXPL: 0CVE-2022-25705 – Integer Overflow to Buffer Overflow in Modem
https://notcve.org/view.php?id=CVE-2022-25705
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-47454
https://notcve.org/view.php?id=CVE-2022-47454
In wlan driver, there is a possible missing params check. This could lead to local denial of service in wlan services. • https://www.unisoc.com/en_us/secy/announcementDetail/1632612109718192129 • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.4EPSS: 0%CPEs: 55EXPL: 0CVE-2023-20635
https://notcve.org/view.php?id=CVE-2023-20635
In keyinstall, there is a possible information disclosure due to an integer overflow. • https://corp.mediatek.com/product-security-bulletin/March-2023 • CWE-191: Integer Underflow (Wrap or Wraparound) •