CVE-2022-40523 – Information exposure in Kernel
https://notcve.org/view.php?id=CVE-2022-40523
Information disclosure in Kernel due to indirect branch misprediction. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •
CVE-2022-40521 – Improper authorization in Modem
https://notcve.org/view.php?id=CVE-2022-40521
Transient DOS due to improper authorization in Modem • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-285: Improper Authorization CWE-287: Improper Authentication •
CVE-2022-40507 – Double free in Core
https://notcve.org/view.php?id=CVE-2022-40507
Memory corruption due to double free in Core while mapping HLOS address to the list. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-415: Double Free •
CVE-2022-33307 – Double free in Automotive
https://notcve.org/view.php?id=CVE-2022-33307
Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-415: Double Free •
CVE-2022-33267 – Improper restriction of operations within the bounds of memory buffer in Linux
https://notcve.org/view.php?id=CVE-2022-33267
Memory corruption in Linux while sending DRM request. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •