Ricoh Company, Ltd. Security Vulnerabilities

CVE-2023-33039

Memory corruption in Automotive Display while destroying the image handle created using connected display...

CVE-2023-33039

Memory corruption in Automotive Display while destroying the image handle created using connected display...

CVE-2023-33031

Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data...

CVE-2023-33029

Memory corruption in DSP Service during a remote call from HLOS to...

CVE-2023-33034

Memory corruption while parsing the ADSP response...

CVE-2023-33019

Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA...

CVE-2023-28577

In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel...

CVE-2023-28573

Memory corruption in WLAN HAL while parsing WMI command...

CVE-2023-28573

Memory corruption in WLAN HAL while parsing WMI command...

CVE-2023-28569

Information disclosure in WLAN HAL while handling command through WMI...

CVE-2023-28570

Memory corruption while processing audio...

CVE-2023-28566

Information disclosure in WLAN HAL while handling the WMI state info...

CVE-2023-28566

Information disclosure in WLAN HAL while handling the WMI state info...

CVE-2023-28563

Information disclosure in IOE Firmware while handling WMI...

CVE-2023-28561

Memory corruption in QESL while processing payload from external ESL device to...

CVE-2023-28557

Memory corruption in WLAN HAL while processing command parameters from untrusted WMI...

CVE-2023-28554

Information Disclosure in Qualcomm IPC while reading values from shared memory in...

CVE-2023-28556

Cryptographic issue in HLOS during key...

CVE-2023-28553

Information Disclosure in WLAN Host when processing WMI event...

CVE-2023-28539

Memory corruption in WLAN Host when the firmware invokes multiple WMI Service Available...

CVE-2023-24855

Memory corruption in Modem while processing security related configuration before AS Security...

CVE-2023-28538

Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI...

CVE-2023-28537

Memory corruption while allocating memory in COmxApeDec module in...

CVE-2023-24854

Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response...

CVE-2023-24851

Memory Corruption in WLAN HOST while parsing QMI response message from...

CVE-2023-24851

Memory Corruption in WLAN HOST while parsing QMI response message from...

CVE-2023-24848

Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line...

CVE-2023-24847

Transient DOS in Modem while allocating DSM...

CVE-2023-22385

Memory Corruption in Data Modem while making a MO call or MT VOLTE...

CVE-2023-22387

Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory...

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header...

CVE-2023-21659

Transient DOS in WLAN Firmware while processing frames with missing header...

CVE-2023-21651

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in...

CVE-2023-21652

Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after...

CVE-2023-21652

Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after...

CVE-2023-21649

Memory corruption in WLAN while running doDriverCmd for an unspecific...

CVE-2023-21644

Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu...

CVE-2023-21643

Memory corruption due to untrusted pointer dereference in automotive during system...

CVE-2023-21641

An app with non-privileged access can change global system brightness and cause undesired system...

CVE-2023-21636

Memory Corruption due to improper validation of array index in Linux while updating adn...

CVE-2023-21636

Memory Corruption due to improper validation of array index in Linux while updating adn...

CVE-2023-21637

Memory corruption in Linux while calling system configuration...

CVE-2023-21637

Memory corruption in Linux while calling system configuration...

CVE-2023-21638

Memory corruption in Video while calling APIs with different instance ID than the one received in...

CVE-2023-28540 Improper Authentication in Data Modem

Cryptographic issue in Data Modem due to improper authentication during TLS...

CVE-2023-21631

Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from...

CVE-2023-21633

Memory Corruption in Linux while processing QcRilRequestImsRegisterMultiIdentityMessage...

CVE-2023-21629

Memory Corruption in Modem due to double free while parsing the PKCS15 sim...

CVE-2023-21626

Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one...

CVE-2023-21627

Memory corruption in Trusted Execution Environment while calling service API with invalid...