Modem
by Qualcomm
CVEs (45)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-24855 | Cri | 0.64 | 9.8 | 0.01 | Oct 3, 2023 | Memory corruption in Modem while processing security related configuration before AS Security Exchange. | ||
| CVE-2022-33259 | Cri | 0.64 | 9.8 | 0.00 | Apr 13, 2023 | Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received. | ||
| CVE-2022-33211 | Cri | 0.64 | 9.8 | 0.00 | Apr 13, 2023 | memory corruption in modem due to improper check while calculating size of serialized CoAP message | ||
| CVE-2022-33277 | Hig | 0.55 | 8.4 | 0.00 | Feb 12, 2023 | Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. | ||
| CVE-2022-33276 | Hig | 0.55 | 8.4 | 0.00 | Jan 9, 2023 | Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command. | ||
| CVE-2023-33058 | Hig | 0.53 | 8.2 | 0.00 | Feb 6, 2024 | Information disclosure in Modem while processing SIB5. | ||
| CVE-2022-40505 | Hig | 0.53 | 8.2 | 0.00 | May 2, 2023 | Information disclosure due to buffer over-read in Modem while parsing DNS hostname. | ||
| CVE-2022-33295 | Hig | 0.53 | 8.2 | 0.00 | Apr 13, 2023 | Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length. | ||
| CVE-2022-33291 | Hig | 0.53 | 8.2 | 0.00 | Apr 13, 2023 | Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length. | ||
| CVE-2022-33287 | Hig | 0.53 | 8.2 | 0.00 | Apr 13, 2023 | Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet. | ||
| CVE-2022-33258 | Hig | 0.53 | 8.2 | 0.00 | Apr 13, 2023 | Information disclosure due to buffer over-read in modem while reading configuration parameters. | ||
| CVE-2022-33228 | Hig | 0.53 | 8.2 | 0.00 | Apr 13, 2023 | Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by-hop or destination option in header. | ||
| CVE-2022-33222 | Hig | 0.53 | 8.2 | 0.00 | Apr 13, 2023 | Information disclosure due to buffer over-read while parsing DNS response packets in Modem. | ||
| CVE-2022-33229 | Hig | 0.53 | 8.2 | 0.00 | Feb 12, 2023 | Information disclosure due to buffer over-read in Modem while using static array to process IPv4 packets. | ||
| CVE-2023-28551 | Hig | 0.51 | 7.8 | 0.00 | Dec 5, 2023 | Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments. | ||
| CVE-2022-33264 | Hig | 0.51 | 7.9 | 0.00 | Jun 6, 2023 | Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. | ||
| CVE-2022-33233 | Hig | 0.51 | 7.8 | 0.00 | Feb 12, 2023 | Memory corruption due to configuration weakness in modem wile sending command to write protected files. | ||
| CVE-2023-33043 | Hig | 0.49 | 7.5 | 0.01 | Dec 5, 2023 | Transient DOS in Modem when a Beam switch request is made with a non-configured BWP. | ||
| CVE-2023-33042 | Hig | 0.49 | 7.5 | 0.01 | Dec 5, 2023 | Transient DOS in Modem after RRC Setup message is received. | ||
| CVE-2023-24847 | Hig | 0.49 | 7.5 | 0.00 | Oct 3, 2023 | Transient DOS in Modem while allocating DSM items. |
- risk 0.64cvss 9.8epss 0.01
Memory corruption in Modem while processing security related configuration before AS Security Exchange.
- risk 0.64cvss 9.8epss 0.00
Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received.
- risk 0.64cvss 9.8epss 0.00
memory corruption in modem due to improper check while calculating size of serialized CoAP message
- risk 0.55cvss 8.4epss 0.00
Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
- risk 0.55cvss 8.4epss 0.00
Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.
- risk 0.53cvss 8.2epss 0.00
Information disclosure in Modem while processing SIB5.
- risk 0.53cvss 8.2epss 0.00
Information disclosure due to buffer over-read in Modem while parsing DNS hostname.
- risk 0.53cvss 8.2epss 0.00
Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length.
- risk 0.53cvss 8.2epss 0.00
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length.
- risk 0.53cvss 8.2epss 0.00
Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet.
- risk 0.53cvss 8.2epss 0.00
Information disclosure due to buffer over-read in modem while reading configuration parameters.
- risk 0.53cvss 8.2epss 0.00
Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by-hop or destination option in header.
- risk 0.53cvss 8.2epss 0.00
Information disclosure due to buffer over-read while parsing DNS response packets in Modem.
- risk 0.53cvss 8.2epss 0.00
Information disclosure due to buffer over-read in Modem while using static array to process IPv4 packets.
- risk 0.51cvss 7.8epss 0.00
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
- risk 0.51cvss 7.9epss 0.00
Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
- risk 0.51cvss 7.8epss 0.00
Memory corruption due to configuration weakness in modem wile sending command to write protected files.
- risk 0.49cvss 7.5epss 0.01
Transient DOS in Modem when a Beam switch request is made with a non-configured BWP.
- risk 0.49cvss 7.5epss 0.01
Transient DOS in Modem after RRC Setup message is received.
- risk 0.49cvss 7.5epss 0.00
Transient DOS in Modem while allocating DSM items.
Page 1 of 3