CVE-2023-28559 – Buffer Copy Without Checking Size of Input in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28559
Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload. Corrupción de memoria en WLAN FW al procesar parámetros de comando de payloads WMI no fiables. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVE-2023-28558 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28558
Memory corruption in WLAN handler while processing PhyID in Tx status handler. Corrupción de la memoria en el WLAN handler cuando se procesa PhyID en Tx status handler. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVE-2023-28557 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28557
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload. Corrupción de memoria en WLAN HAL al procesar parámetros de comando de un payload WMI que no es de confianza. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index •
CVE-2023-28544 – Buffer Copy without Checking the Size of Input in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-28544
Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers. Corrupción de memoria en WLAN al enviar comandos de transmisión desde HLOS a controladores UTF. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2023-28541 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2023-28541
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •