CVSS: 7.8EPSS: 0%CPEs: 402EXPL: 0CVE-2022-25705 – Integer Overflow to Buffer Overflow in Modem
https://notcve.org/view.php?id=CVE-2022-25705
07 Mar 2023 — Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 8.4EPSS: 0%CPEs: 416EXPL: 0CVE-2022-25694 – Use of Out-of-range Pointer Offset in MODEM
https://notcve.org/view.php?id=CVE-2022-25694
07 Mar 2023 — Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 6.2EPSS: 0%CPEs: 366EXPL: 0CVE-2022-22075 – Information Exposure in Graphics
https://notcve.org/view.php?id=CVE-2022-22075
07 Mar 2023 — Information Disclosure in Graphics during GPU context switch. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 326EXPL: 0CVE-2022-33248 – Integer overflow to buffer overflow in User Identity Module
https://notcve.org/view.php?id=CVE-2022-33248
09 Feb 2023 — Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 404EXPL: 0CVE-2022-33233 – Configuration weakness in modem
https://notcve.org/view.php?id=CVE-2022-33233
09 Feb 2023 — Memory corruption due to configuration weakness in modem wile sending command to write protected files. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-16: Configuration CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 244EXPL: 0CVE-2022-33266 – Integer overflow to buffer overflow in Audio
https://notcve.org/view.php?id=CVE-2022-33266
06 Jan 2023 — Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.2EPSS: 0%CPEs: 184EXPL: 0CVE-2022-33255 – Buffer over-read in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-33255
06 Jan 2023 — Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 300EXPL: 0CVE-2022-22088 – Integer Overflow to Buffer Overflow in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-22088
06 Jan 2023 — Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 4.9EPSS: 0%CPEs: 92EXPL: 0CVE-2022-22079 – Buffer Over-read in BOOT
https://notcve.org/view.php?id=CVE-2022-22079
06 Jan 2023 — Denial of service while processing fastboot flash command on mmc due to buffer over read Denegación de servicio al procesar el comando flash fastboot en mmc debido a sobrelectura del búfer • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 250EXPL: 0CVE-2022-25685
https://notcve.org/view.php?id=CVE-2022-25685
13 Dec 2022 — Denial of service in Modem module due to improper authorization while error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables Denegación de servicio en el módulo Módem debido a una autorización inadecuada durante el manejo de errores en Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-287: Improper Authentication •