CVSS: 7.8EPSS: 0%CPEs: 130EXPL: 0CVE-2023-21649 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in WLAN
https://notcve.org/view.php?id=CVE-2023-21649
08 Aug 2023 — Memory corruption in WLAN while running doDriverCmd for an unspecific command. Corrupción de memoria en WLAN al ejecutar doDriverCmd para un comando no específico. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 68EXPL: 0CVE-2023-21648 – Integer Overflow to Buffer Overflow in RIL
https://notcve.org/view.php?id=CVE-2023-21648
08 Aug 2023 — Memory corruption in RIL while trying to send apdu packet. Corrupción de memoria en RIL al intentar enviar paquete apdu. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-680: Integer Overflow to Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 96EXPL: 0CVE-2023-21627 – Incorrect Type Conversion or Cast in Trusted Execution Environment
https://notcve.org/view.php?id=CVE-2023-21627
08 Aug 2023 — Memory corruption in Trusted Execution Environment while calling service API with invalid address. Corrupción de memoria en Trusted Execution Environment al llamar a la API de servicio con una dirección no válida. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-20: Improper Input Validation CWE-704: Incorrect Type Conversion or Cast •
CVSS: 7.1EPSS: 0%CPEs: 370EXPL: 0CVE-2023-21626 – Improper Authentication in HLOS.
https://notcve.org/view.php?id=CVE-2023-21626
08 Aug 2023 — Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key. Problema criptográfico en HLOS debido a una autenticación incorrecta al realizar comprobaciones de velocidad de clave utilizando más de una clave. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-287: Improper Authentication CWE-320: Key Management Errors •
CVSS: 8.2EPSS: 0%CPEs: 92EXPL: 0CVE-2023-21625 – Buffer Over-read in Network Services
https://notcve.org/view.php?id=CVE-2023-21625
08 Aug 2023 — Information disclosure in Network Services due to buffer over-read while the device receives DNS response. Divulgación de información en Servicios de red debido a la sobrelectura del búfer mientras el dispositivo recibe la respuesta DNS. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 10.0EPSS: 0%CPEs: 408EXPL: 0CVE-2022-40510 – Buffer copy without checking size of input in Audio.
https://notcve.org/view.php?id=CVE-2022-40510
08 Aug 2023 — Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. Corrupción de memoria debida a la copia del búfer sin comprobar el tamaño de la entrada en Audio durante una llamada de voz con el vocoder EVS. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-457: Use of Uninitialized Variable CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 412EXPL: 0CVE-2023-22667 – Integer Overflow or Wraparound in Audio
https://notcve.org/view.php?id=CVE-2023-22667
04 Jul 2023 — Memory Corruption in Audio while allocating the ion buffer during the music playback. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 542EXPL: 0CVE-2023-22387 – Use of Out-of-range Pointer Offset in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2023-22387
04 Jul 2023 — Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.8EPSS: 0%CPEs: 110EXPL: 0CVE-2023-21637 – Improper Restrictions of Operations within the Bounds of a Memory Buffer in Linux
https://notcve.org/view.php?id=CVE-2023-21637
04 Jul 2023 — Memory corruption in Linux while calling system configuration APIs. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 98EXPL: 0CVE-2023-21635 – Buffer Copy without Checking Size of Input in Data Network Stack & Connectivity
https://notcve.org/view.php?id=CVE-2023-21635
04 Jul 2023 — Memory Corruption in Data Network Stack & Connectivity when sim gets detected on telephony. • https://www.qualcomm.com/company/product-security/bulletins/july-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •