NotCVE - vendor:"Qualcomm" product:"205"

Page 2 of 441 results (0.008 seconds)

CVSS: 7.8EPSS: 0%CPEs: 670EXPL: 0

CVE-2023-28550 – Improper Restriction of Operations within the Bounds of a Memory Buffer in MPP Performance

https://notcve.org/view.php?id=CVE-2023-28550

05 Dec 2023 — Memory corruption in MPP performance while accessing DSM watermark using external memory address. Corrupción de la memoria en el rendimiento de MPP al acceder a la marca de agua DSM mediante una dirección de memoria externa. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 112EXPL: 0

CVE-2023-22668 – Use After Free in Audio

https://notcve.org/view.php?id=CVE-2023-22668

05 Dec 2023 — Memory Corruption in Audio while invoking IOCTLs calls from the user-space. Corrupción de la memoria en el audio al invocar llamadas IOCTL desde el espacio de usuario. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-416: Use After Free •

CVSS: 6.1EPSS: 0%CPEs: 296EXPL: 0

CVE-2023-28554 – Buffer Over-read in Qualcomm IPC

https://notcve.org/view.php?id=CVE-2023-28554

07 Nov 2023 — Information Disclosure in Qualcomm IPC while reading values from shared memory in VM. Divulgación de información en Qualcomm IPC mientras se leen valores de la memoria compartida en VM. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-126: Buffer Over-read •

CVSS: 10.0EPSS: 0%CPEs: 464EXPL: 0

CVE-2023-22388 – Use of Out-of-range Pointer Offset in Multi-mode Call Processor

https://notcve.org/view.php?id=CVE-2023-22388

07 Nov 2023 — Memory Corruption in Multi-mode Call Processor while processing bit mask API. Corrupción de la memoria en Multi-mode Call Processor mientras se procesa la API de máscara de bits. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-787: Out-of-bounds Write CWE-823: Use of Out-of-range Pointer Offset •

CVSS: 8.2EPSS: 0%CPEs: 476EXPL: 0

CVE-2023-24849 – Buffer Over-read in Data Modem

https://notcve.org/view.php?id=CVE-2023-24849

03 Oct 2023 — Information Disclosure in data Modem while parsing an FMTP line in an SDP message. Divulgación de información en el Modem de datos mientras se analiza una línea FMTP en un mensaje SDP. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-126: Buffer Over-read •

CVSS: 8.2EPSS: 0%CPEs: 488EXPL: 0

CVE-2023-24848 – Buffer Over-read in Data Modem

https://notcve.org/view.php?id=CVE-2023-24848

03 Oct 2023 — Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. Divulgación de información en el Modem de datos mientras se realiza una llamada VoLTE con un valor de línea RTCP FB indefinido. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-126: Buffer Over-read •

CVSS: 10.0EPSS: 0%CPEs: 482EXPL: 0

CVE-2023-22385 – Buffer Over-read in Data Modem

https://notcve.org/view.php?id=CVE-2023-22385

03 Oct 2023 — Memory Corruption in Data Modem while making a MO call or MT VOLTE call. Corrupción de la memoria en el módem de datos al realizar una llamada MO o una llamada MT VOLTE. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-126: Buffer Over-read CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 164EXPL: 0

CVE-2023-33020 – Improper Authorization in WLAN Host

https://notcve.org/view.php?id=CVE-2023-33020

05 Sep 2023 — Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE. Un ataque de denegación de servicios (DOS) transitorio en el componente WLAN Host es posible cuando se recibe un canal no válido (como canal fuera de rango) en STA durante CSA IE. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-285: Improper Authorization •

CVSS: 7.8EPSS: 0%CPEs: 164EXPL: 0

CVE-2023-33019 – Improper Authorization in WLAN Host

https://notcve.org/view.php?id=CVE-2023-33019

05 Sep 2023 — Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE. Un ataque de denegación de servicios (DOS) transitorio en el componente WLAN Host mientras realiza el anuncio de cambio de canal (CSA), cuando una estación móvil recibe un canal no válido en CSA IE. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-285: Improper Authorization •

CVSS: 7.8EPSS: 0%CPEs: 120EXPL: 0

CVE-2023-28575 – Multiple Type Confusion Vulnerability

https://notcve.org/view.php?id=CVE-2023-28575

08 Aug 2023 — The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it. La función cam_get_device_priv no comprueba el tipo de manejador devuelto (device/session/link). Esto llevaría a un uso de tipo inválido si se le pasa un manejador incorrecto. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-823: Use of Out-of-range Pointer Offset CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

1 2 3 4 5