CVSS: 7.5EPSS: 0%CPEs: 144EXPL: 0CVE-2023-28584 – Improper Authorization in WLAN Host
https://notcve.org/view.php?id=CVE-2023-28584
Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement (CSA). Un ataque de denegación de servicio (DOS) en WLAN host cuando una estación móvil recibe un canal no válido en CSA IE mientras realiza el anuncio de cambio de canal (CSA). • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-285: Improper Authorization •
CVSS: 7.8EPSS: 0%CPEs: 584EXPL: 0CVE-2023-28567 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28567
Memory corruption in WLAN HAL while handling command through WMI interfaces. Corrupción de memoria en WLAN HAL al manejar flujos de comandos a través de interfaces WMI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 590EXPL: 0CVE-2023-28565 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28565
Memory corruption in WLAN HAL while handling command streams through WMI interfaces. Corrupción de memoria en WLAN HAL al manejar flujos de comandos a través de interfaces WMI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 498EXPL: 0CVE-2023-28564 – Use of Out-of-range Pointer Offset in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28564
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces. Corrupción de memoria en WLAN HAL mientras pasan parámetros de comando a través de interfaces WMI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-787: Out-of-bounds Write CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 9.8EPSS: 0%CPEs: 136EXPL: 0CVE-2023-28562 – Buffer Copy Without Checking Size of Input in QESL
https://notcve.org/view.php?id=CVE-2023-28562
Memory corruption while handling payloads from remote ESL. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •