CVSS: 7.8EPSS: 0%CPEs: 326EXPL: 0CVE-2022-33248 – Integer overflow to buffer overflow in User Identity Module
https://notcve.org/view.php?id=CVE-2022-33248
09 Feb 2023 — Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 404EXPL: 0CVE-2022-33233 – Configuration weakness in modem
https://notcve.org/view.php?id=CVE-2022-33233
09 Feb 2023 — Memory corruption due to configuration weakness in modem wile sending command to write protected files. • https://www.qualcomm.com/company/product-security/bulletins/february-2023-bulletin • CWE-16: Configuration CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 296EXPL: 0CVE-2022-40520 – Stack based buffer overflow in Core
https://notcve.org/view.php?id=CVE-2022-40520
06 Jan 2023 — Memory corruption due to stack-based buffer overflow in Core • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 88EXPL: 0CVE-2022-33299 – Null pointer dereference in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-33299
06 Jan 2023 — Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data. DOS transitorio debido a la desreferencia del puntero nulo en Bluetooth HOST mientras se recibe una PDU de protocolo de atributos con datos de longitud cero. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 92EXPL: 0CVE-2022-33290 – Null pointer dereference in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-33290
06 Jan 2023 — Transient DOS in Bluetooth HOST due to null pointer dereference when a mismatched argument is passed. DOS transitorio en Bluetooth HOST debido a la desreferencia del puntero nulo cuando se pasa un argumento que no coincide. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 564EXPL: 0CVE-2022-33286 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33286
06 Jan 2023 — Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 558EXPL: 0CVE-2022-33285 – Buffer over-read in WLAN
https://notcve.org/view.php?id=CVE-2022-33285
06 Jan 2023 — Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 244EXPL: 0CVE-2022-33266 – Integer overflow to buffer overflow in Audio
https://notcve.org/view.php?id=CVE-2022-33266
06 Jan 2023 — Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content. • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.0EPSS: 0%CPEs: 156EXPL: 0CVE-2022-25722 – Information Exposure in DSP Services
https://notcve.org/view.php?id=CVE-2022-25722
06 Jan 2023 — Information exposure in DSP services due to improper handling of freeing memory Exposición de información en servicios DSP por manejo inadecuado de liberación de memoria • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 90EXPL: 0CVE-2022-25717 – Use-After-Free Issue in Display
https://notcve.org/view.php?id=CVE-2022-25717
06 Jan 2023 — Memory corruption in display due to double free while allocating frame buffer memory Corrupción de la memoria en la pantalla debido a la doble liberación al asignar memoria búfer de fotogramas • https://www.qualcomm.com/company/product-security/bulletins/january-2023-bulletin • CWE-415: Double Free •