CVE-2023-21673 – Improper Access Control in Kernel
https://notcve.org/view.php?id=CVE-2023-21673
Improper Access to the VM resource manager can lead to Memory Corruption. El acceso inadecuado al administrador de recursos de la máquina virtual puede provocar daños en la memoria. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-284: Improper Access Control •
CVE-2023-33021 – Use After Free in Graphics
https://notcve.org/view.php?id=CVE-2023-33021
Memory corruption in Graphics while processing user packets for command submission. Corrupción de la memoria en Graphics al procesar paquetes de usuario para el envío de comandos. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-416: Use After Free •
CVE-2023-33015 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33015
Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame. Un ataque de denegación de servicio (DOS) en el firmware WLAN mientras interpreta MBSSID IE de un beacon frame recibido. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2023-28581 – Improper Restriction of Operations within the Bounds of a Memory Buffer in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-28581
Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE. Corrupción de la memoria en el WLAN Firmware mientras analiza claves GTK recibidas en GTK KDE. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVE-2023-28573 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28573
Memory corruption in WLAN HAL while parsing WMI command parameters. Corrupción de memoria en WLAN HAL al analizar parámetros de comandos WMI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •