CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2024-23356 – Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS
https://notcve.org/view.php?id=CVE-2024-23356
Memory corruption during session sign renewal request calls in HLOS. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 44EXPL: 0CVE-2024-23353 – Buffer Over-read in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23353
Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2024-21459 – Buffer Over-read in WLAN HOST
https://notcve.org/view.php?id=CVE-2024-21459
Information disclosure while handling beacon or probe response frame in STA. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 9.1EPSS: 0%CPEs: 45EXPL: 0CVE-2023-43551 – Improper Authentication in Multi-Mode Call Processor
https://notcve.org/view.php?id=CVE-2023-43551
Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. Problema criptográfico al realizar la conexión con una red LTE, una estación base no autorizada puede omitir la fase de autenticación y enviar inmediatamente el comando del modo de seguridad. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0CVE-2024-21475 – Use of Out-of-range Pointer Offset in Video
https://notcve.org/view.php?id=CVE-2024-21475
Memory corruption when the payload received from firmware is not as per the expected protocol size. Corrupción de la memoria cuando el payload recibido del firmware no corresponde al tamaño de protocolo esperado. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-823: Use of Out-of-range Pointer Offset •