3777 matches found
CVE-2022-33228
CVE-2022-33228 affects Qualcomm modem chipsets. The vulnerability is an information disclosure caused by a buffer over-read when the modem processes an IPv6 header containing hop-by-hop or destination options. Documented impact is Confidentiality High; other impacts (Integrity, Availability) are ...
CVE-2022-33223 Null pointer dereference in Modem
Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding...
CVE-2022-33223
CVE-2022-33223 describes a transient Denial of Service in the Modem caused by a null pointer dereference while processing incoming packets using HTTP chunked encoding. The CVSS v3.1 vector (NETWORK, LOW AC, NONE PR, UI, S=U) yields a base score of 7.5 (HIGH). The vulnerability is associated with ...
CVE-2022-33222 Buffer over-read in Modem
Information disclosure due to buffer over-read while parsing DNS response packets in Modem...
CVE-2022-33222
CVE-2022-33222 is a vulnerability described across multiple sources as an information disclosure caused by a buffer over-read when parsing DNS response packets in a Modem. The effect is a confidentiality impact (high) with no integrity/availability impact per the primary NVD entry, though CVSS ve...
CVE-2022-33211
CVE-2022-33211 affects Qualcomm modem/chipset components. Root cause: memory corruption due to an improper check when calculating the size of a serialized CoAP message. CVSS v3.1 base score 9.8 (CRITICAL) with network attack vector, no privileges required, no user interaction, and high impact on ...
CVE-2022-33211 Improper Input Validation in MODEM
memory corruption in modem due to improper check while calculating size of serialized CoAP message...
CVE-2022-25747
CVE-2022-25747 affects Qualcomm modem chipsets. The vulnerability is caused by improper input validation during parsing of upcoming CoAP messages, leading to information disclosure. Reported impact indicates high confidentiality impact (C:H/I:N/A:N) with network attack vector and low attack compl...
CVE-2022-25747 Buffer Over-read in MODEM
Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message...
CVE-2022-25747 Buffer Over-read in MODEM
Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message...
CVE-2022-25745
CVE-2022-25745 describes memory corruption in a modem caused by improper input validation when handling incoming CoAP messages. The CVE is associated with Qualcomm chipsets/modem firmware; CVSS v3.1 metrics indicate a critical impact (CVSS 9.8, NETWORK attack vector, no privileges or user interac...
CVE-2022-25745 Always Incorrect Control Flow Implementation in MODEM
Memory corruption in modem due to improper input validation while handling the incoming CoAP message...
CVE-2022-25745 Always Incorrect Control Flow Implementation in MODEM
Memory corruption in modem due to improper input validation while handling the incoming CoAP message...
CVE-2022-25740
CVE-2022-25740 affects Qualcomm modem firmware/chipsets. The issue is described as memory corruption caused by a buffer overwrite when building an IPv6 multicast address from the interface MAC. CVSS 3.1 base score 9.8 (Network, Low attack complexity, No privileges, No user interaction; impact to ...
CVE-2022-25740 Buffer Copy Without Checking Size of Input in MODEM
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface...
CVE-2022-25740 Buffer Copy Without Checking Size of Input in MODEM
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface...
CVE-2022-25739 Null Point Dereference in MODEM
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call...
CVE-2022-25739
The CVE-2022-25739 entry describes a Denial of Service in a modem due to a missing null check when processing an IPv6 packet during an ECM call. Multiple sources (NVD, Red Hat, CNNVD, PRION, etc.) associate this with Qualcomm chipsets/modems, with a CVSS v3.1 base score of 7.5 (Network, Low/No Pr...
CVE-2022-25737 Use of Uninitialized Variable in MODEM
Information disclosure in modem due to missing NULL check while reading packets received from local network...
CVE-2022-25737
CVE-2022-25737 affects the modem component and is caused by a missing NULL check when reading packets from the local network, leading to information disclosure with High confidentiality impact (CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). Multiple connected sources (NVD, Red Hat, PRION, CNNVD...