CVSS: 7.8EPSS: 0%CPEs: 222EXPL: 0CVE-2024-21458 – Buffer Over-read in WLAN HOST
https://notcve.org/view.php?id=CVE-2024-21458
01 Jul 2024 — Information disclosure while handling SA query action frame. Divulgación de información durante el manejo del frame de acción de consulta SA. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 222EXPL: 0CVE-2024-21457 – Buffer Over-read in WLAN Host Communication
https://notcve.org/view.php?id=CVE-2024-21457
01 Jul 2024 — INformation disclosure while handling Multi-link IE in beacon frame. Divulgación de información mientras se maneja IE de enlace múltiple en un frame de baliza. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 9.4EPSS: 0%CPEs: 43EXPL: 0CVE-2024-21456 – Buffer Over-read in WLAN HOST
https://notcve.org/view.php?id=CVE-2024-21456
01 Jul 2024 — Information Disclosure while parsing beacon frame in STA. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 6.2EPSS: 0%CPEs: 12EXPL: 0CVE-2024-21478 – NULL Pointer Dereference in Graphics
https://notcve.org/view.php?id=CVE-2024-21478
03 Jun 2024 — transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA. DOS transitorio al configurar una devolución de llamada de valla para liberar un objeto de entrada de memoria KGSL durante DMA. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 7.8EPSS: 0%CPEs: 41EXPL: 0CVE-2023-43526 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
https://notcve.org/view.php?id=CVE-2023-43526
06 May 2024 — Memory corruption while querying module parameters from Listen Sound model client in kernel from user space. Corrupción de la memoria al consultar los parámetros del módulo del cliente del modelo Listen Sound en el kernel desde el espacio del usuario. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 42EXPL: 0CVE-2023-43525 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
https://notcve.org/view.php?id=CVE-2023-43525
06 May 2024 — Memory corruption while copying the sound model data from user to kernel buffer during sound model register. Corrupción de la memoria al copiar los datos del modelo de sonido del usuario al búfer del kernel durante el registro del modelo de sonido. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 57EXPL: 0CVE-2023-43524 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Audio
https://notcve.org/view.php?id=CVE-2023-43524
06 May 2024 — Memory corruption when the bandpass filter order received from AHAL is not within the expected range. Corrupción de la memoria cuando el orden del filtro de paso de banda recibido de AHAL no está dentro del rango esperado. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 85EXPL: 0CVE-2023-43521 – Use After Free in HLOS
https://notcve.org/view.php?id=CVE-2023-43521
06 May 2024 — Memory corruption when multiple listeners are being registered with the same file descriptor. Corrupción de la memoria cuando se registran varios oyentes con el mismo descriptor de archivo. • https://docs.qualcomm.com/product/publicresources/securitybulletin/may-2024-bulletin.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 624EXPL: 0CVE-2023-43536 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-43536
06 Feb 2024 — Transient DOS while parse fils IE with length equal to 1. DOS transitorio mientras analiza fils IE con una longitud igual a 1. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-126: Buffer Over-read •
CVSS: 10.0EPSS: 0%CPEs: 132EXPL: 0CVE-2023-43534 – Use of Out-of-range Pointer Offset in WLAN HOST
https://notcve.org/view.php?id=CVE-2023-43534
06 Feb 2024 — Memory corruption while validating the TID to Link Mapping action request frame, when a station connects to an access point. Corrupción de la memoria al validar el TID para el frame de solicitud de acción de Mapeo de enlaces, cuando una estación se conecta a un punto de acceso. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-823: Use of Out-of-range Pointer Offset •