CVSS: 7.8EPSS: 0%CPEs: 12EXPL: 0CVE-2023-21640 – Buffer Copy Without Checking Size of Input in Linux
https://notcve.org/view.php?id=CVE-2023-21640
Memory corruption in Linux when the file upload API is called with parameters having large buffer. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 72EXPL: 0CVE-2023-21638 – Incorrect Type Conversion or Cast in Video
https://notcve.org/view.php?id=CVE-2023-21638
Memory corruption in Video while calling APIs with different instance ID than the one received in initialization. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 9.8EPSS: 0%CPEs: 320EXPL: 0CVE-2023-21631 – Improper Input Validation in Modem
https://notcve.org/view.php?id=CVE-2023-21631
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-20: Improper Input Validation •
CVSS: 6.8EPSS: 0%CPEs: 424EXPL: 0CVE-2023-21629 – Double Free in Modem
https://notcve.org/view.php?id=CVE-2023-21629
Memory Corruption in Modem due to double free while parsing the PKCS15 sim files. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-415: Double Free •