CVSS: 6.1EPSS: 0%CPEs: 288EXPL: 0CVE-2023-28553 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2023-28553
07 Nov 2023 — Information Disclosure in WLAN Host when processing WMI event command. Divulgación de información en WLAN Host al procesar el comando de evento WMI. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-126: Buffer Over-read •
CVSS: 8.4EPSS: 0%CPEs: 548EXPL: 0CVE-2023-24852 – Improper Authentication in Core
https://notcve.org/view.php?id=CVE-2023-24852
07 Nov 2023 — Memory Corruption in Core due to secure memory access by user while loading modem image. Corrupción de la memoria en Core debido al acceso seguro a la memoria por parte del usuario mientras carga la imagen del módem. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-287: Improper Authentication CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 352EXPL: 0CVE-2023-33028 – Buffer Copy without Checking Size of Input in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33028
03 Oct 2023 — Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. Corrupción de la memoria en el WLAN Firmware al realizar una copia de la memoria del caché pmk. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 656EXPL: 0CVE-2023-33027 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33027
03 Oct 2023 — Transient DOS in WLAN Firmware while parsing rsn ies. DOS transitorio en el WLAN Firmware mientras se analiza rsn ies. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 390EXPL: 0CVE-2023-33026 – Buffer over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33026
03 Oct 2023 — Transient DOS in WLAN Firmware while parsing a NAN management frame. DOS transitorio en el WLAN Firmware mientras se analiza un frame de administración NAN. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-126: Buffer Over-read CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 314EXPL: 0CVE-2023-28539 – Buffer Copy Without Checking Size of Input in WLAN Host
https://notcve.org/view.php?id=CVE-2023-28539
03 Oct 2023 — Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available command. Corrupción de la memoria en WLAN Host cuando el firmware invoca varios comandos de servicio WMI disponible. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 398EXPL: 0CVE-2023-28573 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28573
05 Sep 2023 — Memory corruption in WLAN HAL while parsing WMI command parameters. Corrupción de memoria en WLAN HAL al analizar parámetros de comandos WMI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 584EXPL: 0CVE-2023-28567 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28567
05 Sep 2023 — Memory corruption in WLAN HAL while handling command through WMI interfaces. Corrupción de memoria en WLAN HAL al manejar flujos de comandos a través de interfaces WMI. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 562EXPL: 0CVE-2023-28557 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28557
05 Sep 2023 — Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload. Corrupción de memoria en WLAN HAL al procesar parámetros de comando de un payload WMI que no es de confianza. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 456EXPL: 0CVE-2023-28549 – Improper Restriction of Operations within the Bounds of a Memory Buffer in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28549
05 Sep 2023 — Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload. Corrupción de memoria en WLAN HAL al analizar el búfer Rx en el procesamiento del payload TLV. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •