CVSS: 7.5EPSS: 0%CPEs: 656EXPL: 0CVE-2023-33027 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2023-33027
Transient DOS in WLAN Firmware while parsing rsn ies. DOS transitorio en el WLAN Firmware mientras se analiza rsn ies. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.5EPSS: 0%CPEs: 514EXPL: 0CVE-2023-24847 – NULL pointer Dereference in Modem
https://notcve.org/view.php?id=CVE-2023-24847
Transient DOS in Modem while allocating DSM items. DOS transitorio en el módem mientras se asignan elementos DSM. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 8.7EPSS: 0%CPEs: 326EXPL: 0CVE-2023-21673 – Improper Access Control in Kernel
https://notcve.org/view.php?id=CVE-2023-21673
Improper Access to the VM resource manager can lead to Memory Corruption. El acceso inadecuado al administrador de recursos de la máquina virtual puede provocar daños en la memoria. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 404EXPL: 0CVE-2023-28558 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28558
Memory corruption in WLAN handler while processing PhyID in Tx status handler. Corrupción de la memoria en el WLAN handler cuando se procesa PhyID en Tx status handler. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 562EXPL: 0CVE-2023-28557 – Improper Validation of Array Index in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28557
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload. Corrupción de memoria en WLAN HAL al procesar parámetros de comando de un payload WMI que no es de confianza. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-129: Improper Validation of Array Index •