CVSS: 8.4EPSS: 0%CPEs: 416EXPL: 0CVE-2022-25694 – Use of Out-of-range Pointer Offset in MODEM
https://notcve.org/view.php?id=CVE-2022-25694
07 Mar 2023 — Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.8EPSS: 0%CPEs: 404EXPL: 0CVE-2022-33233 – Configuration weakness in modem
https://notcve.org/view.php?id=CVE-2022-33233
09 Feb 2023 — Memory corruption due to configuration weakness in modem wile sending command to write protected files. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-16: Configuration CWE-787: Out-of-bounds Write •
CVSS: 8.2EPSS: 0%CPEs: 42EXPL: 0CVE-2022-33229 – Buffer over-read in Modem
https://notcve.org/view.php?id=CVE-2022-33229
09 Feb 2023 — Information disclosure due to buffer over-read in Modem while using static array to process IPv4 packets. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 8.2EPSS: 0%CPEs: 70EXPL: 0CVE-2022-25738 – Buffer Over-read in MODEM
https://notcve.org/view.php?id=CVE-2022-25738
09 Feb 2023 — Information disclosure in modem due to buffer over-red while performing checksum of packet received • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 68EXPL: 0CVE-2022-25735 – Null Pointer Dereference in MODEM
https://notcve.org/view.php?id=CVE-2022-25735
09 Feb 2023 — Denial of service in modem due to missing null check while processing TCP or UDP packets from server • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 70EXPL: 0CVE-2022-25734 – Loop with Unreachable Exit Condition in MODEM
https://notcve.org/view.php?id=CVE-2022-25734
09 Feb 2023 — Denial of service in modem due to missing null check while processing IP packets with padding • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 7.8EPSS: 0%CPEs: 70EXPL: 0CVE-2022-25733 – Null Pointer Dereference in MODEM
https://notcve.org/view.php?id=CVE-2022-25733
09 Feb 2023 — Denial of service in modem due to null pointer dereference while processing DNS packets • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 8.2EPSS: 0%CPEs: 66EXPL: 0CVE-2022-25732 – Buffer Over-read in MODEM
https://notcve.org/view.php?id=CVE-2022-25732
09 Feb 2023 — Information disclosure in modem due to buffer over read in dns client due to missing length check • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 8.2EPSS: 0%CPEs: 68EXPL: 0CVE-2022-25728 – Buffer Over-read in MODEM
https://notcve.org/view.php?id=CVE-2022-25728
09 Feb 2023 — Information disclosure in modem due to buffer over-read while processing response from DNS server • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 8.4EPSS: 0%CPEs: 394EXPL: 0CVE-2022-25695
https://notcve.org/view.php?id=CVE-2022-25695
13 Dec 2022 — Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Corrupción de la memoria en MODEM debido a una validación incorrecta del índice de matriz mientras se procesan comandos proactivos GSTK en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sn... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-129: Improper Validation of Array Index •