CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-43550 – Integer Overflow or Wraparound in Core Services
https://notcve.org/view.php?id=CVE-2023-43550
Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem. Corrupción de la memoria al procesar una solicitud QMI para asignar memoria desde un subsistema compatible con DHMS. • https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.3EPSS: 0%CPEs: 16EXPL: 0CVE-2023-43548 – Buffer Copy Without Checking Size of Input in Video
https://notcve.org/view.php?id=CVE-2023-43548
Memory corruption while parsing qcp clip with invalid chunk data size. Corrupción de la memoria al analizar el clip qcp con un tamaño de fragmento de datos no válido. • https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 16EXPL: 0CVE-2023-33086 – Improper Release of Memory Before Removing Last Reference in Data Modem
https://notcve.org/view.php?id=CVE-2023-33086
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers. DOS transitorio mientras se procesan múltiples solicitudes de información IKEV2 al dispositivo desde el servidor IPSEC con diferentes identificadores. • https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 8.4EPSS: 0%CPEs: 54EXPL: 0CVE-2023-33066 – Use of Out-of-range Pointer Offset in Audio
https://notcve.org/view.php?id=CVE-2023-33066
Memory corruption in Audio while processing RT proxy port register driver. Corrupción de la memoria en el audio mientras se procesa el controlador de registro del puerto proxy RT. • https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 9.3EPSS: 0%CPEs: 39EXPL: 0CVE-2023-28578 – Improper Input Validation in Services
https://notcve.org/view.php?id=CVE-2023-28578
Memory corruption in Core Services while executing the command for removing a single event listener. Corrupción de la memoria en Core Services al ejecutar el comando para eliminar un único detector de eventos. • https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin • CWE-20: Improper Input Validation •