CVSS: 7.5EPSS: 0%CPEs: 558EXPL: 0CVE-2022-33285 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33285
06 Jan 2023 — Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVSS: 8.1EPSS: 0%CPEs: 196EXPL: 0CVE-2022-25746 – Buffer Copy Without Checking Size of Input in Kernel
https://notcve.org/view.php?id=CVE-2022-25746
06 Jan 2023 — Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 196EXPL: 0CVE-2022-25681
https://notcve.org/view.php?id=CVE-2022-25681
13 Dec 2022 — Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile Posible corrupción de la memoria en el kernel al realizar el acceso a la memoria debido a que el hipervisor no invalidó correctamente las cachés de traducción del procesador en Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industr... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin •
CVSS: 8.4EPSS: 0%CPEs: 408EXPL: 0CVE-2022-25682
https://notcve.org/view.php?id=CVE-2022-25682
13 Dec 2022 — Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Corrupción de la memoria en MODEM UIM debido al uso de un desplazamiento del puntero fuera de rango al decodificar el comando de la tarjeta en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consu... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.4EPSS: 0%CPEs: 394EXPL: 0CVE-2022-25695
https://notcve.org/view.php?id=CVE-2022-25695
13 Dec 2022 — Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables Corrupción de la memoria en MODEM debido a una validación incorrecta del índice de matriz mientras se procesan comandos proactivos GSTK en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sn... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-129: Improper Validation of Array Index •
CVSS: 8.2EPSS: 0%CPEs: 492EXPL: 0CVE-2022-33235
https://notcve.org/view.php?id=CVE-2022-33235
13 Dec 2022 — Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Divulgación de información debido a una sobrelectura del búfer en el firmware de WLAN al analizar los atributos de informac... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 568EXPL: 0CVE-2022-33238
https://notcve.org/view.php?id=CVE-2022-33238
13 Dec 2022 — Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking DOS transitorio debido a un bucle con condición de salida inalcanzable en WLAN mientras se procesan tramas FTM e... • https://www.qualcomm.com/company/product-security/bulletins/december-2022-bulletin • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 7.8EPSS: 0%CPEs: 476EXPL: 0CVE-2022-33237
https://notcve.org/view.php?id=CVE-2022-33237
15 Nov 2022 — Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking DOS transitorio debido a una sobrelectura del búfer en el firmware de WLAN mientras se procesa el umbral de PPE. en Snapdragon Auto, Snapdragon Comp... • https://www.qualcomm.com/company/product-security/bulletins/november-2022-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 486EXPL: 0CVE-2022-25736
https://notcve.org/view.php?id=CVE-2022-25736
19 Oct 2022 — Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una denegación de servicio en WLAN debido a la lectura fuera de límites ocurre mientras es procesada la trama de acción VHT en Snapdragon Auto... • https://www.qualcomm.com/company/product-security/bulletins/october-2022-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 546EXPL: 0CVE-2022-25748
https://notcve.org/view.php?id=CVE-2022-25748
19 Oct 2022 — Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Una corrupción de memoria en WLAN debido a un desbordamiento de enteros en el búfer mientras son analizados los marcos GTK. ... • https://www.qualcomm.com/company/product-security/bulletins/october-2022-bulletin • CWE-190: Integer Overflow or Wraparound •