CVSS: 7.5EPSS: 0%CPEs: 44EXPL: 0CVE-2024-23353 – Buffer Over-read in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23353
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2024-23352 – Loop with Unreachable Exit Condition (`Infinite Loop`) in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23352
Transient DOS when NAS receives ODAC criteria of length 1 and type 1 in registration accept OTA. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 6.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-23350 – Reachable Assertion in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23350
Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-617: Reachable Assertion •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2024-21479 – Buffer Over-read in Audio
https://notcve.org/view.php?id=CVE-2024-21479
Transient DOS during music playback of ALAC content. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.5EPSS: 0%CPEs: -EXPL: 0CVE-2024-7409 – Qemu: denial of service via improper synchronization in qemu nbd server during socket closure
https://notcve.org/view.php?id=CVE-2024-7409
This vulnerability allows a denial of service (DoS) attack via improper synchronization during socket closure when a client keeps a socket open as the server is taken offline. • https://access.redhat.com/security/cve/CVE-2024-7409 https://bugzilla.redhat.com/show_bug.cgi?id=2302487 https://access.redhat.com/errata/RHSA-2024:6811 https://access.redhat.com/errata/RHSA-2024:6818 https://access.redhat.com/errata/RHSA-2024:6964 https://access.redhat.com/errata/RHSA-2024:7408 https://access.redhat.com/errata/RHSA-2024:9136 • CWE-662: Improper Synchronization •