CVE-2023-22388 – Use of Out-of-range Pointer Offset in Multi-mode Call Processor
https://notcve.org/view.php?id=CVE-2023-22388
Memory Corruption in Multi-mode Call Processor while processing bit mask API. Corrupción de la memoria en Multi-mode Call Processor mientras se procesa la API de máscara de bits. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-787: Out-of-bounds Write CWE-823: Use of Out-of-range Pointer Offset •
CVE-2023-21671 – Improper Input Validation in Core
https://notcve.org/view.php?id=CVE-2023-21671
Memory Corruption in Core during syscall for Sectools Fuse comparison feature. Corrupción de la memoria en Core durante la llamada al sistema para la función de comparación de Sectools Fuse. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-20: Improper Input Validation •
CVE-2023-33028 – Buffer Copy without Checking Size of Input in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33028
Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. Corrupción de la memoria en el WLAN Firmware al realizar una copia de la memoria del caché pmk. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVE-2023-24855 – Use of Out-of-range Pointer Offset in Modem
https://notcve.org/view.php?id=CVE-2023-24855
Memory corruption in Modem while processing security related configuration before AS Security Exchange. Corrupción de la memoria en el Modem mientras se procesa la configuración relacionada con la seguridad antes de AS Security Exchange. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-787: Out-of-bounds Write CWE-823: Use of Out-of-range Pointer Offset •
CVE-2023-24853 – Improper Input Validation in HLOS
https://notcve.org/view.php?id=CVE-2023-24853
Memory Corruption in HLOS while registering for key provisioning notify. Notificación de corrupción de memoria en HLOS al registrarse para el aprovisionamiento de claves. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-20: Improper Input Validation CWE-787: Out-of-bounds Write •