NotCVE - vendor:"Qualcomm" product:"Snapdragon 855\ \/860 Mobile Platform Firmware"

Page 3 of 56 results (0.021 seconds)

CVSS: 7.8EPSS: 0%CPEs: 626EXPL: 0

CVE-2023-33109 – NULL Pointer Dereference in WLAN Firmware

https://notcve.org/view.php?id=CVE-2023-33109

02 Jan 2024 — Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host. DOS transitorio mientras se procesa un comando de inicio de escucha WMI P2P (0xD00A) enviado desde el host. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-476: NULL Pointer Dereference •

CVSS: 7.8EPSS: 0%CPEs: 586EXPL: 0

CVE-2023-33062 – Buffer Over-read in WLAN Firmware

https://notcve.org/view.php?id=CVE-2023-33062

02 Jan 2024 — Transient DOS in WLAN Firmware while parsing a BTM request. DOS transitorio en el firmware WLAN mientras se analiza una solicitud BTM. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-126: Buffer Over-read •

CVSS: 7.8EPSS: 0%CPEs: 294EXPL: 0

CVE-2023-33040 – Buffer Over-read in Data Modem

https://notcve.org/view.php?id=CVE-2023-33040

02 Jan 2024 — Transient DOS in Data Modem during DTLS handshake. DOS transitorio en el módem de datos durante el protocolo de enlace DTLS. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-126: Buffer Over-read •

CVSS: 7.8EPSS: 0%CPEs: 294EXPL: 0

CVE-2023-33038 – Integer Overflow or Wraparound in Radio Interface Layer

https://notcve.org/view.php?id=CVE-2023-33038

02 Jan 2024 — Memory corruption while receiving a message in Bus Socket Transport Server. Corrupción de la memoria al recibir un mensaje en Bus Socket Transport Server. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •

CVSS: 7.1EPSS: 0%CPEs: 214EXPL: 0

CVE-2023-33036 – NULL Pointer Dereference in Hypervisor

https://notcve.org/view.php?id=CVE-2023-33036

02 Jan 2024 — Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call. DOS permanente en Hypervisor mientras una máquina virtual que no es de confianza y sin soporte PSCI realiza una llamada de PSCI. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-476: NULL Pointer Dereference •

CVSS: 8.4EPSS: 0%CPEs: 534EXPL: 0

CVE-2023-33033 – Use of Out-of-range Pointer Offset in Audio

https://notcve.org/view.php?id=CVE-2023-33033

02 Jan 2024 — Memory corruption in Audio during playback with speaker protection. Corrupción de la memoria en audio durante la reproducción con protección de altavoz. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-787: Out-of-bounds Write CWE-823: Use of Out-of-range Pointer Offset •

CVSS: 9.3EPSS: 0%CPEs: 240EXPL: 0

CVE-2023-33032 – Integer Overflow or Wraparound in TZ Secure OS

https://notcve.org/view.php?id=CVE-2023-33032

02 Jan 2024 — Memory corruption in TZ Secure OS while requesting a memory allocation from TA region. Corrupción de la memoria en TZ Secure OS al solicitar una asignación de memoria de la región TA. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •

CVSS: 9.3EPSS: 0%CPEs: 602EXPL: 0

CVE-2023-33030 – Buffer Copy without Checking Size of Input in HLOS

https://notcve.org/view.php?id=CVE-2023-33030

02 Jan 2024 — Memory corruption in HLOS while running playready use-case. Corrupción de la memoria en HLOS mientras se ejecuta el caso de uso de PlayReady. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 60EXPL: 0

CVE-2023-28583 – Double Free in Data Network Stack & Connectivity

https://notcve.org/view.php?id=CVE-2023-28583

02 Jan 2024 — Memory corruption when IPv6 prefix timer object`s lifetime expires which are created while Netmgr daemon gets an IPv6 address. Corrupción de la memoria cuando expira la vida útil del objeto del temporizador de prefijo IPv6, que se crea mientras el daemon Netmgr obtiene una dirección IPv6. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-415: Double Free •

CVSS: 8.4EPSS: 0%CPEs: 484EXPL: 0

CVE-2023-33107 – Qualcomm Multiple Chipsets Integer Overflow Vulnerability

https://notcve.org/view.php?id=CVE-2023-33107

05 Dec 2023 — Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call. Corrupción de la memoria en Graphics Linux al asignar una región de memoria virtual compartida durante la llamada IOCTL. Multiple Qualcomm chipsets contain an integer overflow vulnerability due to memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-190: Integer Overflow or Wraparound •

1 2 3 4 5