CVSS: 8.4EPSS: 0%CPEs: 548EXPL: 0CVE-2023-24852 – Improper Authentication in Core
https://notcve.org/view.php?id=CVE-2023-24852
07 Nov 2023 — Memory Corruption in Core due to secure memory access by user while loading modem image. Corrupción de la memoria en Core debido al acceso seguro a la memoria por parte del usuario mientras carga la imagen del módem. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-287: Improper Authentication CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 656EXPL: 0CVE-2023-33027 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33027
03 Oct 2023 — Transient DOS in WLAN Firmware while parsing rsn ies. DOS transitorio en el WLAN Firmware mientras se analiza rsn ies. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 390EXPL: 0CVE-2023-33026 – Buffer over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33026
03 Oct 2023 — Transient DOS in WLAN Firmware while parsing a NAN management frame. DOS transitorio en el WLAN Firmware mientras se analiza un frame de administración NAN. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-126: Buffer Over-read CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 514EXPL: 0CVE-2023-24847 – NULL pointer Dereference in Modem
https://notcve.org/view.php?id=CVE-2023-24847
03 Oct 2023 — Transient DOS in Modem while allocating DSM items. DOS transitorio en el módem mientras se asignan elementos DSM. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 388EXPL: 0CVE-2023-33015 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33015
05 Sep 2023 — Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame. Un ataque de denegación de servicio (DOS) en el firmware WLAN mientras interpreta MBSSID IE de un beacon frame recibido. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 398EXPL: 0CVE-2023-28573 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28573
05 Sep 2023 — Memory corruption in WLAN HAL while parsing WMI command parameters. Corrupción de memoria en WLAN HAL al analizar parámetros de comandos WMI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 584EXPL: 0CVE-2023-28567 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28567
05 Sep 2023 — Memory corruption in WLAN HAL while handling command through WMI interfaces. Corrupción de memoria en WLAN HAL al manejar flujos de comandos a través de interfaces WMI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 498EXPL: 0CVE-2023-28564 – Use of Out-of-range Pointer Offset in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28564
05 Sep 2023 — Memory corruption in WLAN HAL while passing command parameters through WMI interfaces. Corrupción de memoria en WLAN HAL mientras pasan parámetros de comando a través de interfaces WMI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-787: Out-of-bounds Write CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.8EPSS: 0%CPEs: 534EXPL: 0CVE-2023-28560 – Buffer Copy Without Checking Size of Input in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28560
05 Sep 2023 — Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. Corrupción de memoria en WLAN HAL al procesar devIndex desde un payload WMI no fiable. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 562EXPL: 0CVE-2023-28557 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28557
05 Sep 2023 — Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload. Corrupción de memoria en WLAN HAL al procesar parámetros de comando de un payload WMI que no es de confianza. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index •