CVE-2023-21646 – Reachable Assertion in Modem
https://notcve.org/view.php?id=CVE-2023-21646
Transient DOS in Modem while processing invalid System Information Block 1. Un ataque de denegación de servicios (DOS) transitorio en Modem cuando se procesa información inválida del sistema Block 1. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-617: Reachable Assertion •
CVE-2023-21644 – Integer Overflow to Buffer Overflow in RIL
https://notcve.org/view.php?id=CVE-2023-21644
Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request. Corrupción de memoria en RIL debido a un desbordamiento de enteros al lanzar la petición "qcril_uim_request_apdu request". • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVE-2023-21636 – Improper Validation of Array Index in Linux
https://notcve.org/view.php?id=CVE-2023-21636
Memory Corruption due to improper validation of array index in Linux while updating adn record. orrupción de memoria debida a una validación incorrecta del índice de matriz en Linux mientras actualiza el registro adn. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index •
CVE-2022-40524 – Buffer over-read in Modem
https://notcve.org/view.php?id=CVE-2022-40524
Memory corruption due to buffer over-read in Modem while processing SetNativeHandle RTP service. Corrupción de la memoria debido a una lectura excesiva del búfer en Modem mientras se procesa el servicio RTP SetNativeHandle. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2022-33275 – Improper validation of array index in WLAN HAL
https://notcve.org/view.php?id=CVE-2022-33275
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. Corrupción de memoria debido a la validación incorrecta del índice de matriz en WLAN HAL cuando se recibe "lm_itemNum" estando fuera de rango. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index •