CVSS: 8.4EPSS: 0%CPEs: 488EXPL: 0CVE-2022-33277 – Buffer copy without checking size of input in modem
https://notcve.org/view.php?id=CVE-2022-33277
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 314EXPL: 0CVE-2022-33243 – Improper access control in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2022-33243
Memory corruption due to improper access control in Qualcomm IPC. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 564EXPL: 0CVE-2022-33286 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33286
Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 558EXPL: 0CVE-2022-33285 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33285
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 6.0EPSS: 0%CPEs: 156EXPL: 0CVE-2022-25722 – Information Exposure in DSP Services
https://notcve.org/view.php?id=CVE-2022-25722
Information exposure in DSP services due to improper handling of freeing memory Exposición de información en servicios DSP por manejo inadecuado de liberación de memoria • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-416: Use After Free •