CVE-2023-33082 Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in WLAN Host
Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO...
9.8CVSS
9.9AI Score
0.001EPSS
CVE-2023-33071 Improper Access Control in Automotive OS Platform Android
Memory corruption in Automotive OS whenever untrusted apps try to access HAb for graphics...
8.4CVSS
8.7AI Score
0.0004EPSS
CVE-2023-28585 Integer Overflow to Buffer Overflow in TZ Secure OS
Memory corruption while loading an ELF segment in TEE...
8.2CVSS
9.1AI Score
0.0004EPSS
CVE-2023-28551 Improper Restriction of Operations within the Bounds of a Memory Buffer in UTILS
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input...
7.8CVSS
8.1AI Score
0.0004EPSS
CVE-2023-28546 Buffer Copy Without Checking Size of Input in SPS Applications
Memory Corruption in SPS Application while exporting public key in sorter...
7.8CVSS
7.8AI Score
0.0004EPSS
CVE-2023-33117 Use After Free in Audio
Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE...
7.8CVSS
8.1AI Score
0.0004EPSS
CVE-2023-33110 Use of Out-of-range Pointer Offset in Audio
The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory...
7.8CVSS
7.8AI Score
0.0004EPSS
CVE-2023-33038 Integer Overflow or Wraparound in Radio Interface Layer
Memory corruption while receiving a message in Bus Socket Transport...
6.7CVSS
8AI Score
0.0004EPSS
CVE-2023-43532 Untrusted Pointer Dereference in Display
Memory corruption while reading ACPI config through the user mode...
8.4CVSS
8.8AI Score
0.0004EPSS
CVE-2023-33069 Buffer Copy Without Checking Size of Input in Audio
Memory corruption in Audio while processing the calibration data returned from ACDB...
6.7CVSS
8AI Score
0.0004EPSS
CVE-2023-33058 Buffer Copy Without Checking Size of Input in Modem
Information disclosure in Modem while processing...
8.2CVSS
9.2AI Score
0.001EPSS
9.8CVSS
9.6AI Score
0.001EPSS
7.3CVSS
7.4AI Score
0.0005EPSS
Transient DOS while processing PDU Release command with a parameter PDU ID out of...
7.5CVSS
7.6AI Score
0.0005EPSS
Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol...
7.5CVSS
7.5AI Score
0.0005EPSS
7.5CVSS
7.6AI Score
0.0005EPSS
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different...
7.5CVSS
7.5AI Score
0.0005EPSS
Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different...
7.5CVSS
7.5AI Score
0.0005EPSS
8.4CVSS
8.5AI Score
0.0004EPSS
5.1CVSS
5.1AI Score
0.0004EPSS
Memory corruption in Data Modem while verifying hello-verify message during the DTLS...
9.8CVSS
9.7AI Score
0.001EPSS
Memory corruption in Core Services while executing the command for removing a single event...
9.3CVSS
9.4AI Score
0.001EPSS
Interpol Conference Highlights Cyber-Crime Challenges and Solutions
The emergence of cyber-crime, which transcends man-made boundaries, has underscored the urgent need for global cooperation among law enforcement agencies to prevent and solve these crimes, according to a senior Dubai Police official. At the Third International Conference on Interpol for the Middle....
6.9AI Score
CVE-2023-43546 Use After Free in Automotive Multimedia
Memory corruption while invoking HGSL IOCTL context...
8.4CVSS
8.8AI Score
0.001EPSS
CVE-2023-43541 NULL Pointer Dereference in Windows Graphics
Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics...
8.4CVSS
8.8AI Score
0.0004EPSS
CVE-2023-43540 Buffer Copy Without Checking Size of Input in Bluetooth HOST
Memory corruption while processing the IOCTL FM HCI WRITE...
8.4CVSS
8.8AI Score
0.001EPSS
CVE-2023-33104 Improper input Validation in Multi-Mode Call Processor
Transient DOS while processing PDU Release command with a parameter PDU ID out of...
7.5CVSS
7.9AI Score
0.0005EPSS
CVE-2023-33096 Reachable Assertion in Multi-Mode Call Processor
Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501...
7.5CVSS
7.7AI Score
0.0005EPSS
CVE-2023-28582 Buffer Copy Without Checking Size of Input in Data Modem
Memory corruption in Data Modem while verifying hello-verify message during the DTLS...
9.8CVSS
9.8AI Score
0.001EPSS
JVN#51770585: EC-CUBE vulnerable to authorization bypass
EC-CUBE from EC-CUBE CO.,LTD. is an open source system for creating shopping websites. EC-CUBE contains an authorization bypass vulnerability (CWE-639). ## Impact A user of the affected shopping website may obtain other users' information by sending a crafted HTTP request. ## Solution Apply the...
6.3AI Score
0.006EPSS
7.5CVSS
7.5AI Score
0.0004EPSS
7.5CVSS
7.6AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0004EPSS
7.5CVSS
7.5AI Score
0.0004EPSS
Memory corruption in Automotive Display while destroying the image handle created using connected display...
8.4CVSS
7.8AI Score
0.0004EPSS
Memory corruption in Automotive Display while destroying the image handle created using connected display...
7.8CVSS
8.6AI Score
0.0004EPSS
Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data...
7.8CVSS
7.8AI Score
0.0004EPSS
8.4CVSS
7.7AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA...
7.5CVSS
7.5AI Score
0.0005EPSS
In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel...
7.8CVSS
6.7AI Score
0.0004EPSS
7.8CVSS
7.9AI Score
0.0004EPSS
7.8CVSS
8AI Score
0.0004EPSS
5.5CVSS
6.3AI Score
0.0004EPSS
7.8CVSS
7.8AI Score
0.0004EPSS
6.1CVSS
5.5AI Score
0.0004EPSS
5.5CVSS
6.2AI Score
0.0004EPSS
5.5CVSS
6.2AI Score
0.0004EPSS
9.8CVSS
9.7AI Score
0.001EPSS
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI...
7.8CVSS
7.9AI Score
0.0004EPSS