CVE-2022-33223 – Null pointer dereference in Modem
https://notcve.org/view.php?id=CVE-2022-33223
Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVE-2022-33222 – Buffer over-read in Modem
https://notcve.org/view.php?id=CVE-2022-33222
Information disclosure due to buffer over-read while parsing DNS response packets in Modem. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2022-33211 – Improper Input Validation in MODEM
https://notcve.org/view.php?id=CVE-2022-33211
memory corruption in modem due to improper check while calculating size of serialized CoAP message • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-20: Improper Input Validation CWE-131: Incorrect Calculation of Buffer Size •
CVE-2022-25747 – Buffer Over-read in MODEM
https://notcve.org/view.php?id=CVE-2022-25747
Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2022-25745 – Always Incorrect Control Flow Implementation in MODEM
https://notcve.org/view.php?id=CVE-2022-25745
Memory corruption in modem due to improper input validation while handling the incoming CoAP message • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-670: Always-Incorrect Control Flow Implementation •