CVSS: 8.4EPSS: 0%CPEs: 568EXPL: 0CVE-2022-40531 – Incorrect type conversion in WLAN
https://notcve.org/view.php?id=CVE-2022-40531
07 Mar 2023 — Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 9.0EPSS: 0%CPEs: 418EXPL: 0CVE-2022-33213 – Memory Corruption in MODEM
https://notcve.org/view.php?id=CVE-2022-33213
07 Mar 2023 — Memory corruption in modem due to buffer overflow while processing a PPP packet • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 402EXPL: 0CVE-2022-25705 – Integer Overflow to Buffer Overflow in Modem
https://notcve.org/view.php?id=CVE-2022-25705
07 Mar 2023 — Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 8.4EPSS: 0%CPEs: 416EXPL: 0CVE-2022-25694 – Use of Out-of-range Pointer Offset in MODEM
https://notcve.org/view.php?id=CVE-2022-25694
07 Mar 2023 — Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 8.4EPSS: 0%CPEs: 476EXPL: 0CVE-2022-25655 – Buffer copy without checking the size of input in WLAN HAL.
https://notcve.org/view.php?id=CVE-2022-25655
07 Mar 2023 — Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 592EXPL: 0CVE-2022-40512 – Buffer over-read in WLAN Firmware.
https://notcve.org/view.php?id=CVE-2022-40512
09 Feb 2023 — Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 8.2EPSS: 0%CPEs: 492EXPL: 0CVE-2022-33271 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33271
09 Feb 2023 — Information disclosure due to buffer over-read in WLAN while parsing NMF frame. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 404EXPL: 0CVE-2022-33233 – Configuration weakness in modem
https://notcve.org/view.php?id=CVE-2022-33233
09 Feb 2023 — Memory corruption due to configuration weakness in modem wile sending command to write protected files. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-16: Configuration CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 4%CPEs: 296EXPL: 0CVE-2022-40520 – Stack based buffer overflow in Core
https://notcve.org/view.php?id=CVE-2022-40520
06 Jan 2023 — Memory corruption due to stack-based buffer overflow in Core • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 88EXPL: 0CVE-2022-33299 – Null pointer dereference in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-33299
06 Jan 2023 — Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data. DOS transitorio debido a la desreferencia del puntero nulo en Bluetooth HOST mientras se recibe una PDU de protocolo de atributos con datos de longitud cero. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-476: NULL Pointer Dereference •