CVSS: 7.8EPSS: 0%CPEs: 112EXPL: 0CVE-2023-22668 – Use After Free in Audio
https://notcve.org/view.php?id=CVE-2023-22668
Memory Corruption in Audio while invoking IOCTLs calls from the user-space. Corrupción de la memoria en el audio al invocar llamadas IOCTL desde el espacio de usuario. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 118EXPL: 0CVE-2023-22383 – Use After Free in Camera
https://notcve.org/view.php?id=CVE-2023-22383
Memory Corruption in camera while installing a fd for a particular DMA buffer. Corrupción de la memoria en la cámara al instalar un fd para un búfer DMA en particular. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 230EXPL: 0CVE-2023-33061 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33061
Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame. DOS transitorio en WLAN Firmware mientras se analiza la baliza WLAN o el frame de respuesta de sonda. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 518EXPL: 0CVE-2023-33059 – Buffer Copy Without Checking Size of Input in Audio
https://notcve.org/view.php?id=CVE-2023-33059
Memory corruption in Audio while processing the VOC packet data from ADSP. Corrupción de la memoria en Audio mientras se procesan los datos del paquete VOC desde ADSP. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-191: Integer Underflow (Wrap or Wraparound) CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 232EXPL: 0CVE-2023-33056 – NULL Pointer dereference in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33056
Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE. DOS transitorio en WLAN Firmware cuando el firmware recibe una baliza que incluye T2LM IE. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-476: NULL Pointer Dereference •