CVSS: 7.5EPSS: 0%CPEs: 132EXPL: 0CVE-2023-33016 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33016
Transient DOS in WLAN firmware while parsing MLO (multi-link operation). Un ataque de denegación de servicio (DOS) en el firmware WLAN al analizar MLO (operación multienlace). • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.5EPSS: 0%CPEs: 388EXPL: 0CVE-2023-33015 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33015
Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame. Un ataque de denegación de servicio (DOS) en el firmware WLAN mientras interpreta MBSSID IE de un beacon frame recibido. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.5EPSS: 0%CPEs: 144EXPL: 0CVE-2023-28584 – Improper Authorization in WLAN Host
https://notcve.org/view.php?id=CVE-2023-28584
Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement (CSA). Un ataque de denegación de servicio (DOS) en WLAN host cuando una estación móvil recibe un canal no válido en CSA IE mientras realiza el anuncio de cambio de canal (CSA). • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-285: Improper Authorization •
CVSS: 9.8EPSS: 0%CPEs: 52EXPL: 0CVE-2023-28581 – Improper Restriction of Operations within the Bounds of a Memory Buffer in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-28581
Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE. Corrupción de la memoria en el WLAN Firmware mientras analiza claves GTK recibidas en GTK KDE. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 398EXPL: 0CVE-2023-28573 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28573
Memory corruption in WLAN HAL while parsing WMI command parameters. Corrupción de memoria en WLAN HAL al analizar parámetros de comandos WMI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •