CVSS: 7.8EPSS: 0%CPEs: 168EXPL: 0CVE-2023-28570 – Buffer Copy without Checking Size of Input in Audio
https://notcve.org/view.php?id=CVE-2023-28570
07 Nov 2023 — Memory corruption while processing audio effects. Corrupción de la memoria al procesar efectos de audio. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 6.1EPSS: 0%CPEs: 422EXPL: 0CVE-2023-28569 – Buffer Over-read in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28569
07 Nov 2023 — Information disclosure in WLAN HAL while handling command through WMI interfaces. Divulgación de información en WLAN HAL mientras se manejan comandos a través de interfaces WMI. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-126: Buffer Over-read •
CVSS: 6.1EPSS: 0%CPEs: 256EXPL: 0CVE-2023-28566 – Buffer Over-read in WLAN HAL
https://notcve.org/view.php?id=CVE-2023-28566
07 Nov 2023 — Information disclosure in WLAN HAL while handling the WMI state info command. Divulgación de información en WLAN HAL mientras se maneja el comando de información de estado de WMI. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-126: Buffer Over-read •
CVSS: 6.1EPSS: 0%CPEs: 466EXPL: 0CVE-2023-28563 – Buffer Over-read in IOE Firmware
https://notcve.org/view.php?id=CVE-2023-28563
07 Nov 2023 — Information disclosure in IOE Firmware while handling WMI command. Divulgación de información en IOE Firmware mientras se maneja el comando WMI. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 458EXPL: 0CVE-2023-28556 – Improper Authorization in HLOS
https://notcve.org/view.php?id=CVE-2023-28556
07 Nov 2023 — Cryptographic issue in HLOS during key management. Problema criptográfico en HLOS durante la gestión de claves. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-285: Improper Authorization •
CVSS: 6.1EPSS: 0%CPEs: 296EXPL: 0CVE-2023-28554 – Buffer Over-read in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2023-28554
07 Nov 2023 — Information Disclosure in Qualcomm IPC while reading values from shared memory in VM. Divulgación de información en Qualcomm IPC mientras se leen valores de la memoria compartida en VM. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-126: Buffer Over-read •
CVSS: 6.1EPSS: 0%CPEs: 288EXPL: 0CVE-2023-28553 – Buffer Over-read in WLAN Host
https://notcve.org/view.php?id=CVE-2023-28553
07 Nov 2023 — Information Disclosure in WLAN Host when processing WMI event command. Divulgación de información en WLAN Host al procesar el comando de evento WMI. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-126: Buffer Over-read •
CVSS: 8.4EPSS: 0%CPEs: 548EXPL: 0CVE-2023-24852 – Improper Authentication in Core
https://notcve.org/view.php?id=CVE-2023-24852
07 Nov 2023 — Memory Corruption in Core due to secure memory access by user while loading modem image. Corrupción de la memoria en Core debido al acceso seguro a la memoria por parte del usuario mientras carga la imagen del módem. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-287: Improper Authentication CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 42EXPL: 0CVE-2023-33039 – Use After Free in Automotive Display
https://notcve.org/view.php?id=CVE-2023-33039
03 Oct 2023 — Memory corruption in Automotive Display while destroying the image handle created using connected display driver. Corrupción de la memoria en Automotive Display al destruir el identificador de imagen creado con el controlador de pantalla conectado. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 288EXPL: 0CVE-2023-33035 – Buffer Copy Without Checking Size of Input in Audio
https://notcve.org/view.php?id=CVE-2023-33035
03 Oct 2023 — Memory corruption while invoking callback function of AFE from ADSP. Corrupción de la memoria al invocar la función de devolución de llamada de AFE desde ADSP. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •