CVE-2022-33252 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33252
Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVE-2022-25746 – Buffer Copy Without Checking Size of Input in Kernel
https://notcve.org/view.php?id=CVE-2022-25746
Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2022-25725 – Use-after-Free in MODEM
https://notcve.org/view.php?id=CVE-2022-25725
Denial of service in MODEM due to improper pointer handling • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-763: Release of Invalid Pointer or Reference •
CVE-2022-25716 – Time-of-check Time-of-use Race Condition in Multimedia Framework
https://notcve.org/view.php?id=CVE-2022-25716
Memory corruption in Multimedia Framework due to unsafe access to the data members Corrupción de la memoria en Multimedia Framework debido al acceso inseguro a los miembros de los datos • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVE-2022-22088 – Integer Overflow to Buffer Overflow in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-22088
Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-787: Out-of-bounds Write •