CVSS: 7.8EPSS: 0%CPEs: 35EXPL: 0CVE-2024-33052 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in FM Host
https://notcve.org/view.php?id=CVE-2024-33052
02 Sep 2024 — Memory corruption when user provides data for FM HCI command control operations. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 33EXPL: 0CVE-2024-33051 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2024-33051
02 Sep 2024 — Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2024-33050 – Buffer Over-read in WLAN Host Communication
https://notcve.org/view.php?id=CVE-2024-33050
02 Sep 2024 — Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2024-33048 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2024-33048
02 Sep 2024 — Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 5.5EPSS: 0%CPEs: 35EXPL: 0CVE-2024-33043 – Buffer Over-read in FM Host
https://notcve.org/view.php?id=CVE-2024-33043
02 Sep 2024 — Transient DOS while handling PS event when Program Service name length offset value is set to 255. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 35EXPL: 0CVE-2024-33042 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in FM Host
https://notcve.org/view.php?id=CVE-2024-33042
02 Sep 2024 — Memory corruption when Alternative Frequency offset value is set to 255. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.2EPSS: 0%CPEs: 29EXPL: 0CVE-2024-33016 – Improper Restriction of Operations within the Bounds of a Memory Buffer in Storage
https://notcve.org/view.php?id=CVE-2024-33016
02 Sep 2024 — memory corruption when an invalid firehose patch command is invoked. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.1EPSS: 0%CPEs: 19EXPL: 0CVE-2024-23362 – Improper Input Validation in Trusted Execution Environment
https://notcve.org/view.php?id=CVE-2024-23362
02 Sep 2024 — Cryptographic issue while parsing RSA keys in COBR format. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-20: Improper Input Validation •
CVSS: 8.5EPSS: 0%CPEs: 15EXPL: 0CVE-2024-23359 – Buffer Over-read in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23359
02 Sep 2024 — Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2024-23358 – Buffer Over-read in Multi Mode Call Processor
https://notcve.org/view.php?id=CVE-2024-23358
02 Sep 2024 — Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in Modem. • https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2024-bulletin.html • CWE-126: Buffer Over-read •