CVSS: 8.2EPSS: 0%CPEs: 52EXPL: 0CVE-2022-25726 – Buffer Over-read in MODEM
https://notcve.org/view.php?id=CVE-2022-25726
Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 9.8EPSS: 0%CPEs: 24EXPL: 0CVE-2022-25678 – Buffer Copy Without Checking Size of Input in MODEM
https://notcve.org/view.php?id=CVE-2022-25678
Memory correction in modem due to buffer overwrite during coap connection • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 32EXPL: 0CVE-2022-40540 – Buffer copy without checking the size of input in Linux Kernel
https://notcve.org/view.php?id=CVE-2022-40540
Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel. • https://bugzilla.suse.com/show_bug.cgi?id=1209597 https://security.netapp.com/advisory/ntap-20230616-0001 https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 50EXPL: 0CVE-2022-40539 – Improper Validation of Array Index in Automotive Android OS
https://notcve.org/view.php?id=CVE-2022-40539
Memory corruption in Automotive Android OS due to improper validation of array index. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-129: Improper Validation of Array Index CWE-284: Improper Access Control •
CVSS: 9.8EPSS: 0%CPEs: 324EXPL: 0CVE-2022-40537 – Improper Validation of Array Index in Bluetooth HOST
https://notcve.org/view.php?id=CVE-2022-40537
Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response. • https://www.qualcomm.com/company/product-security/bulletins/march-2023-bulletin • CWE-129: Improper Validation of Array Index •