Qualcomm Inc Snapdragon vulnerabilities

CVE-2023-43553 [CRITICAL] CWE-823 CVE-2023-43553: Memory corruption while parsing beacon/probe response frame when AP sends more supported links in ML Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.

CVE-2023-28582 [CRITICAL] CWE-120 CVE-2023-28582: Memory corruption in Data Modem while verifying hello-verify message during the DTLS handshake. Memory corruption in Data Modem while verifying hello-verify message during the DTLS handshake.

CVE-2023-43548 [CRITICAL] CWE-120 CVE-2023-43548: Memory corruption while parsing qcp clip with invalid chunk data size. Memory corruption while parsing qcp clip with invalid chunk data size.

CVE-2023-33103 [HIGH] CWE-20 CVE-2023-33103: Transient DOS while processing CAG info IE received from NW. Transient DOS while processing CAG info IE received from NW.

CVE-2023-33086 [HIGH] CWE-401 CVE-2023-33086: Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different identifiers.

CVE-2023-43539 [HIGH] CWE-126 CVE-2023-43539: Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol frame Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol frame.

CVE-2023-43540 [HIGH] CWE-120 CVE-2023-43540: Memory corruption while processing the IOCTL FM HCI WRITE request. Memory corruption while processing the IOCTL FM HCI WRITE request.

CVE-2023-43541 [HIGH] CWE-476 CVE-2023-43541: Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render. Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics render.

CVE-2023-28578 [HIGH] CWE-20 CVE-2023-28578: Memory corruption in Core Services while executing the command for removing a single event listener. Memory corruption in Core Services while executing the command for removing a single event listener.

CVE-2023-43547 [HIGH] CWE-416 CVE-2023-43547: Memory corruption while invoking IOCTLs calls in Automotive Multimedia. Memory corruption while invoking IOCTLs calls in Automotive Multimedia.

CVE-2023-43549 [HIGH] CWE-121 CVE-2023-43549: Memory corruption while processing TPC target power table in FTM TPC. Memory corruption while processing TPC target power table in FTM TPC.

CVE-2023-33066 [HIGH] CWE-823 CVE-2023-33066: Memory corruption in Audio while processing RT proxy port register driver. Memory corruption in Audio while processing RT proxy port register driver.

CVE-2023-33096 [HIGH] CWE-617 CVE-2023-33096: Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16. Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.

CVE-2023-43546 [HIGH] CWE-416 CVE-2023-43546: Memory corruption while invoking HGSL IOCTL context create. Memory corruption while invoking HGSL IOCTL context create.

CVE-2023-33095 [HIGH] CWE-617 CVE-2023-33095: Transient DOS while processing multiple payload container type with incorrect container length recei Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.

CVE-2023-43550 [HIGH] CWE-190 CVE-2023-43550: Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsyst Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem.

CVE-2023-33105 [HIGH] CWE-16 CVE-2023-33105: Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent wit Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number.

CVE-2023-33104 [HIGH] CWE-20 CVE-2023-33104: Transient DOS while processing PDU Release command with a parameter PDU ID out of range. Transient DOS while processing PDU Release command with a parameter PDU ID out of range.

CVE-2023-33084 [HIGH] CWE-401 CVE-2023-33084: Transient DOS while processing IE fragments from server during DTLS handshake. Transient DOS while processing IE fragments from server during DTLS handshake.

CVE-2023-33090 [MEDIUM] CWE-126 CVE-2023-33090: Transient DOS while processing channel information for speaker protection v2 module in ADSP. Transient DOS while processing channel information for speaker protection v2 module in ADSP.