CVSS: 7.8EPSS: 0%CPEs: 232EXPL: 0CVE-2023-33056 – NULL Pointer dereference in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33056
07 Nov 2023 — Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE. DOS transitorio en WLAN Firmware cuando el firmware recibe una baliza que incluye T2LM IE. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 304EXPL: 0CVE-2023-33055 – Buffer Copy Without Checking Size of Input in Audio
https://notcve.org/view.php?id=CVE-2023-33055
07 Nov 2023 — Memory Corruption in Audio while invoking callback function in driver from ADSP. Corrupción de la memoria en Audio al invocar la función de devolución de llamada en el controlador desde ADSP. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 230EXPL: 0CVE-2023-33048 – Buffer over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33048
07 Nov 2023 — Transient DOS in WLAN Firmware while parsing t2lm buffers. DOS transitorio en WLAN Firmware mientras se analizan los buffers t2lm. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 356EXPL: 0CVE-2023-33047 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33047
07 Nov 2023 — Transient DOS in WLAN Firmware while parsing no-inherit IES. DOS transitorio en WLAN Firmware mientras se analiza IES sin herencia. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 10.0EPSS: 0%CPEs: 258EXPL: 0CVE-2023-33045 – Buffer Copy Without Checking Size of Input in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33045
07 Nov 2023 — Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute. Corrupción de la memoria en WLAN Firmware al analizar una trama de administración de NAN que lleva un atributo S3. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 330EXPL: 0CVE-2023-33031 – Buffer Copy Without Checking Size of Input in Automotive Audio
https://notcve.org/view.php?id=CVE-2023-33031
07 Nov 2023 — Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer. Corrupción de la memoria en Automotive Audio al copiar datos del búfer compartido ADSP al búfer de datos del paquete VOC. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 9.0EPSS: 0%CPEs: 156EXPL: 0CVE-2023-28574 – Improper Input Validation in Core
https://notcve.org/view.php?id=CVE-2023-28574
07 Nov 2023 — Memory corruption in core services when Diag handler receives a command to configure event listeners. Corrupción de la memoria en los servicios principales cuando Diag handler recibe un comando para configurar los detectores de eventos. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-20: Improper Input Validation CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 288EXPL: 0CVE-2023-33035 – Buffer Copy Without Checking Size of Input in Audio
https://notcve.org/view.php?id=CVE-2023-33035
03 Oct 2023 — Memory corruption while invoking callback function of AFE from ADSP. Corrupción de la memoria al invocar la función de devolución de llamada de AFE desde ADSP. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 264EXPL: 0CVE-2023-33029 – Use After Free in DSP Service
https://notcve.org/view.php?id=CVE-2023-33029
03 Oct 2023 — Memory corruption in DSP Service during a remote call from HLOS to DSP. Corrupción de la memoria en el servicio DSP durante una llamada remota de HLOS a DSP. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 352EXPL: 0CVE-2023-33028 – Buffer Copy without Checking Size of Input in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33028
03 Oct 2023 — Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. Corrupción de la memoria en el WLAN Firmware al realizar una copia de la memoria del caché pmk. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •