CVSS: 8.5EPSS: 0%CPEs: 15EXPL: 0CVE-2024-23359 – Buffer Over-read in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23359
02 Sep 2024 — Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 27EXPL: 0CVE-2024-33014 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2024-33014
05 Aug 2024 — Transient DOS while parsing ESP IE from beacon/probe response frame. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2024-23356 – Improper Restriction of Operations within the Bounds of a Memory Buffer in HLOS
https://notcve.org/view.php?id=CVE-2024-23356
05 Aug 2024 — Memory corruption during session sign renewal request calls in HLOS. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 44EXPL: 0CVE-2024-23353 – Buffer Over-read in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23353
05 Aug 2024 — Transient DOS while decoding attach reject message received by UE, when IEI is set to ESM_IEI. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 8.4EPSS: 0%CPEs: 11EXPL: 0CVE-2024-21481 – Improper Restriction of Operations within the Bounds of a Memory Buffer in Hypervisor
https://notcve.org/view.php?id=CVE-2024-21481
05 Aug 2024 — Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2024-21459 – Buffer Over-read in WLAN HOST
https://notcve.org/view.php?id=CVE-2024-21459
05 Aug 2024 — Information disclosure while handling beacon or probe response frame in STA. • https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2023-43554 – Improper Restriction of Operations withing the Bounds of a Memory Buffer in DSP Services
https://notcve.org/view.php?id=CVE-2023-43554
01 Jul 2024 — Memory corruption while processing IOCTL handler in FastRPC. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.4EPSS: 0%CPEs: 45EXPL: 0CVE-2023-43551 – Improper Authentication in Multi-Mode Call Processor
https://notcve.org/view.php?id=CVE-2023-43551
03 Jun 2024 — Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. Problema criptográfico al realizar la conexión con una red LTE, una estación base no autorizada puede omitir la fase de autenticación y enviar inmediatamente el comando del modo de seguridad. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2023-43542 – Buffer Copy Without Checking Size of Input in Trusted Execution Environment
https://notcve.org/view.php?id=CVE-2023-43542
03 Jun 2024 — Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked. Corrupción de la memoria al copiar el material de un keyblob cuando el tamaño del material de la clave no se verifica con precisión. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.3EPSS: 0%CPEs: 11EXPL: 0CVE-2023-43538 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in TZ Secure OS
https://notcve.org/view.php?id=CVE-2023-43538
03 Jun 2024 — Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization. Corrupción de la memoria en TZ Secure OS durante la inicialización de Tunnel Invoke Manager. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •