CVE-2023-21656 – Improper Input Validation in WLAN HOST
https://notcve.org/view.php?id=CVE-2023-21656
Memory corruption in WLAN HOST while receiving an WMI event from firmware. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-20: Improper Input Validation •
CVE-2022-40538 – Reachable assertion in Modem
https://notcve.org/view.php?id=CVE-2022-40538
Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-617: Reachable Assertion •
CVE-2022-40536 – Improper authentication in Modem
https://notcve.org/view.php?id=CVE-2022-40536
Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-285: Improper Authorization CWE-287: Improper Authentication •
CVE-2022-40523 – Information exposure in Kernel
https://notcve.org/view.php?id=CVE-2022-40523
Information disclosure in Kernel due to indirect branch misprediction. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •
CVE-2022-40521 – Improper authorization in Modem
https://notcve.org/view.php?id=CVE-2022-40521
Transient DOS due to improper authorization in Modem • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-285: Improper Authorization CWE-287: Improper Authentication •