CVSS: 7.8EPSS: 0%CPEs: 398EXPL: 0CVE-2023-28541 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2023-28541
04 Jul 2023 — Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 8.4EPSS: 0%CPEs: 412EXPL: 0CVE-2023-22667 – Integer Overflow or Wraparound in Audio
https://notcve.org/view.php?id=CVE-2023-22667
04 Jul 2023 — Memory Corruption in Audio while allocating the ion buffer during the music playback. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 542EXPL: 0CVE-2023-22387 – Use of Out-of-range Pointer Offset in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2023-22387
04 Jul 2023 — Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.8EPSS: 0%CPEs: 402EXPL: 0CVE-2023-22386 – Buffer Copy Without Checking Size of Input in WLAN HOST
https://notcve.org/view.php?id=CVE-2023-22386
04 Jul 2023 — Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 72EXPL: 0CVE-2023-21638 – Incorrect Type Conversion or Cast in Video
https://notcve.org/view.php?id=CVE-2023-21638
04 Jul 2023 — Memory corruption in Video while calling APIs with different instance ID than the one received in initialization. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 7.8EPSS: 0%CPEs: 110EXPL: 0CVE-2023-21637 – Improper Restrictions of Operations within the Bounds of a Memory Buffer in Linux
https://notcve.org/view.php?id=CVE-2023-21637
04 Jul 2023 — Memory corruption in Linux while calling system configuration APIs. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 98EXPL: 0CVE-2023-21635 – Buffer Copy without Checking Size of Input in Data Network Stack & Connectivity
https://notcve.org/view.php?id=CVE-2023-21635
04 Jul 2023 — Memory Corruption in Data Network Stack & Connectivity when sim gets detected on telephony. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 194EXPL: 0CVE-2023-21633 – Improper Restriction of Operations within the Bounds of a Memory Buffer in Linux
https://notcve.org/view.php?id=CVE-2023-21633
04 Jul 2023 — Memory Corruption in Linux while processing QcRilRequestImsRegisterMultiIdentityMessage request. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 320EXPL: 0CVE-2023-21631 – Improper Input Validation in Modem
https://notcve.org/view.php?id=CVE-2023-21631
04 Jul 2023 — Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-20: Improper Input Validation •
CVSS: 7.2EPSS: 0%CPEs: 424EXPL: 0CVE-2023-21629 – Double Free in Modem
https://notcve.org/view.php?id=CVE-2023-21629
04 Jul 2023 — Memory Corruption in Modem due to double free while parsing the PKCS15 sim files. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-415: Double Free •