CVSS: 9.1EPSS: 0%CPEs: 48EXPL: 0CVE-2023-21643 – Untrusted Pointer Dereference in Automotive
https://notcve.org/view.php?id=CVE-2023-21643
08 Aug 2023 — Memory corruption due to untrusted pointer dereference in automotive during system call. Corrupción de memoria debida a una desviación de puntero no fiable en automotive durante una llamada al sistema. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-787: Out-of-bounds Write CWE-822: Untrusted Pointer Dereference •
CVSS: 7.1EPSS: 0%CPEs: 370EXPL: 0CVE-2023-21626 – Improper Authentication in HLOS.
https://notcve.org/view.php?id=CVE-2023-21626
08 Aug 2023 — Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key. Problema criptográfico en HLOS debido a una autenticación incorrecta al realizar comprobaciones de velocidad de clave utilizando más de una clave. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-287: Improper Authentication CWE-320: Key Management Errors •
CVSS: 8.4EPSS: 0%CPEs: 50EXPL: 0CVE-2023-21632 – Stack-based Buffer Overflow in Automotive GPU
https://notcve.org/view.php?id=CVE-2023-21632
06 Jun 2023 — Memory corruption in Automotive GPU while querying a gsl memory node. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 6.2EPSS: 0%CPEs: 220EXPL: 0CVE-2022-40533 – Untrusted Pointer Dereference in Core
https://notcve.org/view.php?id=CVE-2022-40533
06 Jun 2023 — Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-822: Untrusted Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 392EXPL: 0CVE-2022-40529 – Improper access control in Kernel
https://notcve.org/view.php?id=CVE-2022-40529
06 Jun 2023 — Memory corruption due to improper access control in kernel while processing a mapping request from root process. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-284: Improper Access Control CWE-863: Incorrect Authorization •
CVSS: 7.1EPSS: 0%CPEs: 370EXPL: 0CVE-2022-40523 – Information exposure in Kernel
https://notcve.org/view.php?id=CVE-2022-40523
06 Jun 2023 — Information disclosure in Kernel due to indirect branch misprediction. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 8.4EPSS: 3%CPEs: 484EXPL: 0CVE-2022-40507 – Double free in Core
https://notcve.org/view.php?id=CVE-2022-40507
06 Jun 2023 — Memory corruption due to double free in Core while mapping HLOS address to the list. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-415: Double Free •
CVSS: 8.4EPSS: 0%CPEs: 220EXPL: 0CVE-2022-33307 – Double free in Automotive
https://notcve.org/view.php?id=CVE-2022-33307
06 Jun 2023 — Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-415: Double Free •
CVSS: 7.1EPSS: 0%CPEs: 696EXPL: 0CVE-2022-22076 – Cryptographic issue in Core
https://notcve.org/view.php?id=CVE-2022-22076
06 Jun 2023 — information disclosure due to cryptographic issue in Core during RPMB read request. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-310: Cryptographic Issues •
CVSS: 7.3EPSS: 0%CPEs: 204EXPL: 0CVE-2022-33273 – Buffer over-read in Trusted Execution Environment
https://notcve.org/view.php?id=CVE-2022-33273
02 May 2023 — Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation. • https://www.qualcomm.com/company/product-security/bulletins/may-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •