CVSS: 9.8EPSS: 0%CPEs: 324EXPL: 0CVE-2022-40537 – Improper Validation of Array Index in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-40537
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-129: Improper Validation of Array Index •
CVSS: 8.4EPSS: 0%CPEs: 568EXPL: 0CVE-2022-40531 – Incorrect type conversion in WLAN
https://notcve.org/view.php?id=CVE-2022-40531
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 9.8EPSS: 0%CPEs: 318EXPL: 0CVE-2022-40515 – Double free in Video
https://notcve.org/view.php?id=CVE-2022-40515
Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 92EXPL: 0CVE-2022-33260 – Stack based buffer overflow in Core
https://notcve.org/view.php?id=CVE-2022-33260
Memory corruption due to stack based buffer overflow in core while sending command from USB of large size. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 314EXPL: 0CVE-2022-33242 – Improper authentication in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2022-33242
Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-287: Improper Authentication •