CVSS: 9.3EPSS: 0%CPEs: 280EXPL: 0CVE-2023-21651 – Incorrect Type Conversion or Cast in Core
https://notcve.org/view.php?id=CVE-2023-21651
08 Aug 2023 — Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE. Corrupción de memoria en el Core debido a una conversión de tipo o cast incorrecto en la función secure_io_read/write en TEE. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 7.1EPSS: 0%CPEs: 370EXPL: 0CVE-2023-21626 – Improper Authentication in HLOS.
https://notcve.org/view.php?id=CVE-2023-21626
08 Aug 2023 — Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key. Problema criptográfico en HLOS debido a una autenticación incorrecta al realizar comprobaciones de velocidad de clave utilizando más de una clave. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-287: Improper Authentication CWE-320: Key Management Errors •
CVSS: 8.2EPSS: 0%CPEs: 92EXPL: 0CVE-2023-21625 – Buffer Over-read in Network Services
https://notcve.org/view.php?id=CVE-2023-21625
08 Aug 2023 — Information disclosure in Network Services due to buffer over-read while the device receives DNS response. Divulgación de información en Servicios de red debido a la sobrelectura del búfer mientras el dispositivo recibe la respuesta DNS. • https://www.qualcomm.com/company/product-security/bulletins/august-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 8.2EPSS: 0%CPEs: 24EXPL: 0CVE-2022-33295 – Buffer over-read in Modem
https://notcve.org/view.php?id=CVE-2022-33295
04 Apr 2023 — Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 24EXPL: 0CVE-2022-33294 – NULL pointer dereference in Modem
https://notcve.org/view.php?id=CVE-2022-33294
04 Apr 2023 — Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-476: NULL Pointer Dereference •
CVSS: 10.0EPSS: 0%CPEs: 24EXPL: 0CVE-2022-33259 – Buffer copy without checking the size of input in Modem
https://notcve.org/view.php?id=CVE-2022-33259
04 Apr 2023 — Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.2EPSS: 0%CPEs: 24EXPL: 0CVE-2022-33258 – Buffer over-read in Modem
https://notcve.org/view.php?id=CVE-2022-33258
04 Apr 2023 — Information disclosure due to buffer over-read in modem while reading configuration parameters. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 9.3EPSS: 0%CPEs: 438EXPL: 0CVE-2022-33231 – Double free in Core
https://notcve.org/view.php?id=CVE-2022-33231
04 Apr 2023 — Memory corruption due to double free in core while initializing the encryption key. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-415: Double Free •
CVSS: 8.2EPSS: 0%CPEs: 24EXPL: 0CVE-2022-33228 – Buffer over-read in Modem
https://notcve.org/view.php?id=CVE-2022-33228
04 Apr 2023 — Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by-hop or destination option in header. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 24EXPL: 0CVE-2022-33223 – Null pointer dereference in Modem
https://notcve.org/view.php?id=CVE-2022-33223
04 Apr 2023 — Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-476: NULL Pointer Dereference •