CVSS: 7.8EPSS: 0%CPEs: 686EXPL: 0CVE-2024-23368 – Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC
https://notcve.org/view.php?id=CVE-2024-23368
01 Jul 2024 — Memory corruption when allocating and accessing an entry in an SMEM partition. Corrupción de la memoria al asignar y acceder a una entrada en una partición SMEM. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 8.4EPSS: 0%CPEs: 626EXPL: 0CVE-2024-21461 – Double Free in HLOS
https://notcve.org/view.php?id=CVE-2024-21461
01 Jul 2024 — Memory corruption while performing finish HMAC operation when context is freed by keymaster. Corrupción de la memoria al realizar la operación de finalización de HMAC cuando Keymaster libera el contexto. • https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2024-bulletin.html • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 534EXPL: 0CVE-2023-43513 – Use of Out-of-range Pointer Offset in PCIe
https://notcve.org/view.php?id=CVE-2023-43513
06 Feb 2024 — Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. Corrupción de la memoria al procesar el anillo de eventos, el puntero de lectura de contexto no es confiable para HLOS y cuando se pasa con valores arbitrarios, puede apuntar a la dirección en el medio del elemento del anillo. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-787: Out-of-bounds Write CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.8EPSS: 0%CPEs: 226EXPL: 0CVE-2023-33069 – Buffer Copy Without Checking Size of Input in Audio
https://notcve.org/view.php?id=CVE-2023-33069
06 Feb 2024 — Memory corruption in Audio while processing the calibration data returned from ACDB loader. Corrupción de la memoria en audio mientras se procesan los datos de calibración devueltos por el cargador ACDB. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 226EXPL: 0CVE-2023-33068 – Buffer Copy Without Checking Size of Input in Audio
https://notcve.org/view.php?id=CVE-2023-33068
06 Feb 2024 — Memory corruption in Audio while processing IIR config data from AFE calibration block. Corrupción de la memoria en audio mientras se procesan datos de configuración IIR del bloque de calibración AFE. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 226EXPL: 0CVE-2023-33067 – Use of Out-of-range Pointer Offset in Audio
https://notcve.org/view.php?id=CVE-2023-33067
06 Feb 2024 — Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points. Corrupción de la memoria en el audio al llamar al comando INICIO en el PCM de voz del host varias veces para los mismos puntos de derivación RX o TX. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-787: Out-of-bounds Write CWE-823: Use of Out-of-range Pointer Offset •
CVSS: 7.1EPSS: 0%CPEs: 208EXPL: 0CVE-2023-33065 – Buffer Over-read in Audio
https://notcve.org/view.php?id=CVE-2023-33065
06 Feb 2024 — Information disclosure in Audio while accessing AVCS services from ADSP payload. Divulgación de información en audio al acceder a los servicios AVCS desde el payload ADSP. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 5.5EPSS: 0%CPEs: 178EXPL: 0CVE-2023-33064 – Buffer Over-read in Audio
https://notcve.org/view.php?id=CVE-2023-33064
06 Feb 2024 — Transient DOS in Audio when invoking callback function of ASM driver. DOS transitorio en audio al invocar la función de devolución de llamada del controlador ASM. • https://www.qualcomm.com/company/product-security/bulletins/february-2024-bulletin • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVSS: 7.8EPSS: 0%CPEs: 464EXPL: 0CVE-2023-33120 – Use After Free in Audio
https://notcve.org/view.php?id=CVE-2023-33120
02 Jan 2024 — Memory corruption in Audio when memory map command is executed consecutively in ADSP. Corrupción de la memoria en audio cuando el comando de mapa de memoria se ejecuta consecutivamente en ADSP. • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 252EXPL: 0CVE-2023-33110 – Use of Out-of-range Pointer Offset in Audio
https://notcve.org/view.php?id=CVE-2023-33110
02 Jan 2024 — The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption. La variable de índice de sesión en el controlador de audio de voz del host PCM que se inicializa antes de abrir el PCM, a la que se accede durante la devolución de llamada de evento desde ADSP y se restablece durante el cierre de PCM puede prov... • https://www.qualcomm.com/company/product-security/bulletins/january-2024-bulletin • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-823: Use of Out-of-range Pointer Offset •