CVSS: 7.8EPSS: 0%CPEs: 402EXPL: 0CVE-2022-25705 – Integer Overflow to Buffer Overflow in Modem
https://notcve.org/view.php?id=CVE-2022-25705
07 Mar 2023 — Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 8.4EPSS: 0%CPEs: 416EXPL: 0CVE-2022-25694 – Use of Out-of-range Pointer Offset in MODEM
https://notcve.org/view.php?id=CVE-2022-25694
07 Mar 2023 — Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 8.4EPSS: 0%CPEs: 476EXPL: 0CVE-2022-25655 – Buffer copy without checking the size of input in WLAN HAL.
https://notcve.org/view.php?id=CVE-2022-25655
07 Mar 2023 — Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 592EXPL: 0CVE-2022-40512 – Buffer over-read in WLAN Firmware.
https://notcve.org/view.php?id=CVE-2022-40512
09 Feb 2023 — Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 404EXPL: 0CVE-2022-33233 – Configuration weakness in modem
https://notcve.org/view.php?id=CVE-2022-33233
09 Feb 2023 — Memory corruption due to configuration weakness in modem wile sending command to write protected files. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-16: Configuration CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 564EXPL: 0CVE-2022-33286 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33286
06 Jan 2023 — Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVSS: 7.5EPSS: 0%CPEs: 558EXPL: 0CVE-2022-33285 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33285
06 Jan 2023 — Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 1%CPEs: 16EXPL: 1CVE-2022-22063 – Memory corruption in Core
https://notcve.org/view.php?id=CVE-2022-22063
14 Dec 2022 — Memory corruption in Core due to improper configuration in boot remapper. Corrupción de la memoria en Core debido a una configuración incorrecta en el reasignador de arranque. • https://github.com/msm8916-mainline/CVE-2022-22063 • CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 408EXPL: 0CVE-2022-25682
https://notcve.org/view.php?id=CVE-2022-25682
13 Dec 2022 — Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Corrupción de la memoria en MODEM UIM debido al uso de un desplazamiento del puntero fuera de rango al decodificar el comando de la tarjeta en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.4EPSS: 0%CPEs: 394EXPL: 0CVE-2022-25695
https://notcve.org/view.php?id=CVE-2022-25695
13 Dec 2022 — Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Corrupción de la memoria en MODEM debido a una validación incorrecta del índice de matriz mientras se procesan comandos proactivos GSTK en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sn... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-129: Improper Validation of Array Index •