CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-21452 – Improper Input Validation in Automotive Telematics
https://notcve.org/view.php?id=CVE-2024-21452
Transient DOS while decoding an ASN.1 OER message containing a SEQUENCE of unknown extensions. DOS transitorio mientras se decodifica un mensaje REA ASN.1 que contiene una SECUENCIA de extensiones desconocidas. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2024-bulletin.html • CWE-20: Improper Input Validation •
CVSS: 8.4EPSS: 0%CPEs: 46EXPL: 0CVE-2023-33023 – Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in SPS-Applications
https://notcve.org/view.php?id=CVE-2023-33023
Memory corruption while processing finish_sign command to pass a rsp buffer. Corrupción de la memoria al procesar el comando Finish_sign para pasar un búfer rsp. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 47EXPL: 0CVE-2023-28547 – Buffer Copy Without Checking Size of Input in SPS Applications
https://notcve.org/view.php?id=CVE-2023-28547
Memory corruption in SPS Application while requesting for public key in sorter TA. Corrupción de la memoria en la aplicación SPS al solicitar la clave pública en el clasificador TA. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 16EXPL: 0CVE-2023-33086 – Improper Release of Memory Before Removing Last Reference in Data Modem
https://notcve.org/view.php?id=CVE-2023-33086
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers. DOS transitorio mientras se procesan múltiples solicitudes de información IKEV2 al dispositivo desde el servidor IPSEC con diferentes identificadores. • https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 8.4EPSS: 0%CPEs: 54EXPL: 0CVE-2023-33066 – Use of Out-of-range Pointer Offset in Audio
https://notcve.org/view.php?id=CVE-2023-33066
Memory corruption in Audio while processing RT proxy port register driver. Corrupción de la memoria en el audio mientras se procesa el controlador de registro del puerto proxy RT. • https://www.qualcomm.com/company/product-security/bulletins/march-2024-bulletin • CWE-823: Use of Out-of-range Pointer Offset •