CVE-2022-33294 – NULL pointer dereference in Modem
https://notcve.org/view.php?id=CVE-2022-33294
Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVE-2022-33291 – Buffer over-read in Modem
https://notcve.org/view.php?id=CVE-2022-33291
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2022-33289 – Improper validation of array index in Modem
https://notcve.org/view.php?id=CVE-2022-33289
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-129: Improper Validation of Array Index •
CVE-2022-33287 – Buffer over-read in Modem
https://notcve.org/view.php?id=CVE-2022-33287
Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2022-33259 – Buffer copy without checking the size of input in Modem
https://notcve.org/view.php?id=CVE-2022-33259
Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •