CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2022-25731 – Incorrect Calculation of Buffer Size in MODEM
https://notcve.org/view.php?id=CVE-2022-25731
04 Apr 2023 — Information disclosure in modem due to buffer over-read while processing packets from DNS server • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-125: Out-of-bounds Read CWE-131: Incorrect Calculation of Buffer Size •
CVSS: 8.2EPSS: 0%CPEs: 54EXPL: 0CVE-2022-25730 – Buffer Over-read in MODEM
https://notcve.org/view.php?id=CVE-2022-25730
04 Apr 2023 — Information disclosure in modem due to improper check of IP type while processing DNS server query • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 8.4EPSS: 0%CPEs: 476EXPL: 0CVE-2022-25655 – Buffer copy without checking the size of input in WLAN HAL.
https://notcve.org/view.php?id=CVE-2022-25655
07 Mar 2023 — Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.2EPSS: 0%CPEs: 42EXPL: 0CVE-2022-33229 – Buffer over-read in Modem
https://notcve.org/view.php?id=CVE-2022-33229
09 Feb 2023 — Information disclosure due to buffer over-read in Modem while using static array to process IPv4 packets. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 8.2EPSS: 0%CPEs: 70EXPL: 0CVE-2022-25738 – Buffer Over-read in MODEM
https://notcve.org/view.php?id=CVE-2022-25738
09 Feb 2023 — Information disclosure in modem due to buffer over-red while performing checksum of packet received • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 70EXPL: 0CVE-2022-25734 – Loop with Unreachable Exit Condition in MODEM
https://notcve.org/view.php?id=CVE-2022-25734
09 Feb 2023 — Denial of service in modem due to missing null check while processing IP packets with padding • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 7.8EPSS: 0%CPEs: 70EXPL: 0CVE-2022-25733 – Null Pointer Dereference in MODEM
https://notcve.org/view.php?id=CVE-2022-25733
09 Feb 2023 — Denial of service in modem due to null pointer dereference while processing DNS packets • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 10.0EPSS: 0%CPEs: 32EXPL: 0CVE-2022-25674
https://notcve.org/view.php?id=CVE-2022-25674
15 Nov 2022 — Cryptographic issues in WLAN during the group key handshake of the WPA/WPA2 protocol in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Problemas criptográficos en WLAN durante el handshake de claves del grupo del protocolo WPA/WPA2 en Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin •
CVSS: 10.0EPSS: 0%CPEs: 42EXPL: 0CVE-2022-25727
https://notcve.org/view.php?id=CVE-2022-25727
15 Nov 2022 — Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Corrupción de la memoria en el módem debido a una verificación de longitud incorrecta al copiar en la memoria en Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 7.8EPSS: 0%CPEs: 42EXPL: 0CVE-2022-25742
https://notcve.org/view.php?id=CVE-2022-25742
15 Nov 2022 — Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music Denegación de Servicio (DoS) en el módem debido a un bucle infinito mientras se analiza el paquete IGMPv2 del servidor en Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music • https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •