CVSS: 9.3EPSS: 0%CPEs: 256EXPL: 0CVE-2022-33288 – Buffer copy without checking the size of input in Core
https://notcve.org/view.php?id=CVE-2022-33288
04 Apr 2023 — Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 84EXPL: 0CVE-2022-33270 – Time-of-check time-of-use race condition in Modem
https://notcve.org/view.php?id=CVE-2022-33270
04 Apr 2023 — Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 9.3EPSS: 0%CPEs: 202EXPL: 0CVE-2022-33269 – Integer overflow or wraparound in Core
https://notcve.org/view.php?id=CVE-2022-33269
04 Apr 2023 — Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.3EPSS: 0%CPEs: 438EXPL: 0CVE-2022-33231 – Double free in Core
https://notcve.org/view.php?id=CVE-2022-33231
04 Apr 2023 — Memory corruption due to double free in core while initializing the encryption key. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 98EXPL: 0CVE-2022-33272 – Reachable assertion in Modem
https://notcve.org/view.php?id=CVE-2022-33272
07 Mar 2023 — Transient DOS in modem due to reachable assertion. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-617: Reachable Assertion •
CVSS: 9.3EPSS: 0%CPEs: 280EXPL: 0CVE-2022-33257 – Time-of-check time-of-use race condition in Core
https://notcve.org/view.php?id=CVE-2022-33257
07 Mar 2023 — Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 10.0EPSS: 0%CPEs: 130EXPL: 0CVE-2022-33256 – Improper validation of array index in Multi-mode call processor
https://notcve.org/view.php?id=CVE-2022-33256
07 Mar 2023 — Memory corruption due to improper validation of array index in Multi-mode call processor. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 128EXPL: 0CVE-2022-33254 – Reachable assertion in Modem
https://notcve.org/view.php?id=CVE-2022-33254
07 Mar 2023 — Transient DOS due to reachable assertion in Modem while processing SIB1 Message. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.8EPSS: 0%CPEs: 130EXPL: 0CVE-2022-33250 – Reachable assertion in Modem
https://notcve.org/view.php?id=CVE-2022-33250
07 Mar 2023 — Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-617: Reachable Assertion •
CVSS: 7.8EPSS: 0%CPEs: 78EXPL: 0CVE-2022-33244 – Reachable assertion in Modem
https://notcve.org/view.php?id=CVE-2022-33244
07 Mar 2023 — Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-617: Reachable Assertion •