64 results (0.002 seconds)

CVSS: 7.8EPSS: 0%CPEs: 464EXPL: 0

CVE-2023-33120 – Use After Free in Audio

https://notcve.org/view.php?id=CVE-2023-33120

02 Jan 2024 — Memory corruption in Audio when memory map command is executed consecutively in ADSP. Corrupción de la memoria en audio cuando el comando de mapa de memoria se ejecuta consecutivamente en ADSP. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-416: Use After Free •

CVSS: 8.4EPSS: 0%CPEs: 534EXPL: 0

CVE-2023-33033 – Use of Out-of-range Pointer Offset in Audio

https://notcve.org/view.php?id=CVE-2023-33033

02 Jan 2024 — Memory corruption in Audio during playback with speaker protection. Corrupción de la memoria en audio durante la reproducción con protección de altavoz. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-787: Out-of-bounds Write CWE-823: Use of Out-of-range Pointer Offset •

CVSS: 7.8EPSS: 0%CPEs: 670EXPL: 0

CVE-2023-28550 – Improper Restriction of Operations within the Bounds of a Memory Buffer in MPP Performance

https://notcve.org/view.php?id=CVE-2023-28550

05 Dec 2023 — Memory corruption in MPP performance while accessing DSM watermark using external memory address. Corrupción de la memoria en el rendimiento de MPP al acceder a la marca de agua DSM mediante una dirección de memoria externa. • https://www.qualcomm.com/company/product-security/bulletins/december-2023-bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 518EXPL: 0

CVE-2023-33059 – Buffer Copy Without Checking Size of Input in Audio

https://notcve.org/view.php?id=CVE-2023-33059

07 Nov 2023 — Memory corruption in Audio while processing the VOC packet data from ADSP. Corrupción de la memoria en Audio mientras se procesan los datos del paquete VOC desde ADSP. • https://www.qualcomm.com/company/product-security/bulletins/november-2023-bulletin • CWE-191: Integer Underflow (Wrap or Wraparound) CWE-787: Out-of-bounds Write •

CVSS: 8.2EPSS: 0%CPEs: 488EXPL: 0

CVE-2023-24848 – Buffer Over-read in Data Modem

https://notcve.org/view.php?id=CVE-2023-24848

03 Oct 2023 — Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. Divulgación de información en el Modem de datos mientras se realiza una llamada VoLTE con un valor de línea RTCP FB indefinido. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-126: Buffer Over-read •

CVSS: 10.0EPSS: 0%CPEs: 482EXPL: 0

CVE-2023-22385 – Buffer Over-read in Data Modem

https://notcve.org/view.php?id=CVE-2023-22385

03 Oct 2023 — Memory Corruption in Data Modem while making a MO call or MT VOLTE call. Corrupción de la memoria en el módem de datos al realizar una llamada MO o una llamada MT VOLTE. • https://www.qualcomm.com/company/product-security/bulletins/october-2023-bulletin • CWE-126: Buffer Over-read CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 534EXPL: 0

CVE-2023-28560 – Buffer Copy Without Checking Size of Input in WLAN HAL

https://notcve.org/view.php?id=CVE-2023-28560

05 Sep 2023 — Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. Corrupción de memoria en WLAN HAL al procesar devIndex desde un payload WMI no fiable. • https://www.qualcomm.com/company/product-security/bulletins/september-2023-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 484EXPL: 0

CVE-2022-40521 – Improper authorization in Modem

https://notcve.org/view.php?id=CVE-2022-40521

06 Jun 2023 — Transient DOS due to improper authorization in Modem • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-285: Improper Authorization CWE-287: Improper Authentication •

CVSS: 7.9EPSS: 0%CPEs: 484EXPL: 0

CVE-2022-33264 – Stack-based buffer overflow in Modem

https://notcve.org/view.php?id=CVE-2022-33264

06 Jun 2023 — Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. • https://www.qualcomm.com/company/product-security/bulletins/june-2023-bulletin • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 450EXPL: 0

CVE-2022-33302 – Improper validation of array index in User Identity Module

https://notcve.org/view.php?id=CVE-2022-33302

04 Apr 2023 — Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. • https://www.qualcomm.com/company/product-security/bulletins/april-2023-bulletin • CWE-129: Improper Validation of Array Index •