CVSS: 7.8EPSS: 0%CPEs: 118EXPL: 0CVE-2023-33043 – Reachable Assertion in Modem
https://notcve.org/view.php?id=CVE-2023-33043
05 Dec 2023 — Transient DOS in Modem when a Beam switch request is made with a non-configured BWP. DOS transitorio en el módem cuando se realiza una solicitud de cambio de haz con un BWP no configurado. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.8EPSS: 0%CPEs: 148EXPL: 0CVE-2023-33042 – Improper Input Validation in Modem
https://notcve.org/view.php?id=CVE-2023-33042
05 Dec 2023 — Transient DOS in Modem after RRC Setup message is received. DOS transitorio en el módem después de recibir el mensaje de configuración de RRC. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 254EXPL: 0CVE-2023-33041 – Reachable assertion in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33041
05 Dec 2023 — Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids. En ciertos escenarios, el firmware de WLAN alcanzará una afirmación debido a una confusión de estado al buscar ID de pares. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.8EPSS: 0%CPEs: 142EXPL: 0CVE-2023-33024 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Radio Interface Layer
https://notcve.org/view.php?id=CVE-2023-33024
05 Dec 2023 — Memory corruption while sending SMS from AP firmware. Corrupción de la memoria al enviar SMS desde el firmware AP. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 424EXPL: 0CVE-2023-33022 – Integer Overflow to Buffer Overflow in HLOS
https://notcve.org/view.php?id=CVE-2023-33022
05 Dec 2023 — Memory corruption in HLOS while invoking IOCTL calls from user-space. Corrupción de la memoria en HLOS al invocar llamadas IOCTL desde el espacio de usuario. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 526EXPL: 0CVE-2023-33018 – Integer Overflow to Buffer Overflow in User Identity Module
https://notcve.org/view.php?id=CVE-2023-33018
05 Dec 2023 — Memory corruption while using the UIM diag command to get the operators name. Corrupción de la memoria al utilizar el comando diag de User Identity Module (UIM) para obtener el nombre del operador. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 554EXPL: 0CVE-2023-33017 – Buffer Copy Without Checking Size of Input in Boot
https://notcve.org/view.php?id=CVE-2023-33017
05 Dec 2023 — Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. Corrupción de la memoria en el arranque mientras se ejecuta una prueba ListVars en el menú UEFI durante el arranque. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 120EXPL: 0CVE-2023-33074 – Use After Free in Audio
https://notcve.org/view.php?id=CVE-2023-33074
07 Nov 2023 — Memory corruption in Audio when SSR event is triggered after music playback is stopped. Corrupción de la memoria en Audio cuando se activa el evento SSR después de detener la reproducción de música. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-416: Use After Free CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 230EXPL: 0CVE-2023-33061 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33061
07 Nov 2023 — Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame. DOS transitorio en WLAN Firmware mientras se analiza la baliza WLAN o el frame de respuesta de sonda. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 518EXPL: 0CVE-2023-33059 – Buffer Copy Without Checking Size of Input in Audio
https://notcve.org/view.php?id=CVE-2023-33059
07 Nov 2023 — Memory corruption in Audio while processing the VOC packet data from ADSP. Corrupción de la memoria en Audio mientras se procesan los datos del paquete VOC desde ADSP. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-191: Integer Underflow (Wrap or Wraparound) CWE-787: Out-of-bounds Write •