Qualcomm Inc Snapdragon vulnerabilities

CVE-2023-33113 [HIGH] CWE-120 CVE-2023-33113: Memory corruption when resource manager sends the host kernel a reply message with multiple fragment Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.

CVE-2023-33117 [HIGH] CWE-416 CVE-2023-33117: Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADS Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.

CVE-2023-33109 [HIGH] CWE-476 CVE-2023-33109: Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host. Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

CVE-2023-33112 [HIGH] CWE-126 CVE-2023-33112: Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element. Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.

CVE-2023-33038 [HIGH] CWE-190 CVE-2023-33038: Memory corruption while receiving a message in Bus Socket Transport Server. Memory corruption while receiving a message in Bus Socket Transport Server.

CVE-2023-33116 [HIGH] CWE-126 CVE-2023-33116: Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver. Transient DOS while parsing ieee80211_parse_mscs_ie in WIN WLAN driver.

CVE-2023-28583 [HIGH] CWE-415 CVE-2023-28583: Memory corruption when IPv6 prefix timer object`s lifetime expires which are created while Netmgr da Memory corruption when IPv6 prefix timer object`s lifetime expires which are created while Netmgr daemon gets an IPv6 address.

CVE-2023-43512 [HIGH] CWE-126 CVE-2023-43512: Transient DOS while parsing GATT service data when the total amount of memory that is required by th Transient DOS while parsing GATT service data when the total amount of memory that is required by the multiple services is greater than the actual size of the services buffer.

CVE-2023-33033 [HIGH] CWE-823 CVE-2023-33033: Memory corruption in Audio during playback with speaker protection. Memory corruption in Audio during playback with speaker protection.

CVE-2023-33032 [HIGH] CWE-190 CVE-2023-33032: Memory corruption in TZ Secure OS while requesting a memory allocation from TA region. Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.

CVE-2023-33037 [MEDIUM] CWE-310 CVE-2023-33037: Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data. Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data.

CVE-2023-33014 [MEDIUM] CWE-20 CVE-2023-33014: Information disclosure in Core services while processing a Diag command. Information disclosure in Core services while processing a Diag command.

CVE-2023-33036 [MEDIUM] CWE-476 CVE-2023-33036: Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call. Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.

CVE-2023-33082 [CRITICAL] CWE-120 CVE-2023-33082: Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE. Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.

CVE-2023-33083 [CRITICAL] CWE-120 CVE-2023-33083: Memory corruption in WLAN Host while processing RRM beacon on the AP. Memory corruption in WLAN Host while processing RRM beacon on the AP.

CVE-2023-33054 [CRITICAL] CWE-287 CVE-2023-33054: Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data. Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.

CVE-2023-28580 [HIGH] CWE-120 CVE-2023-28580: Memory corruption in WLAN Host while setting the PMK length in PMK length in internal cache. Memory corruption in WLAN Host while setting the PMK length in PMK length in internal cache.

CVE-2023-22383 [HIGH] CWE-416 CVE-2023-22383: Memory Corruption in camera while installing a fd for a particular DMA buffer. Memory Corruption in camera while installing a fd for a particular DMA buffer.

CVE-2023-28550 [HIGH] CWE-119 CVE-2023-28550: Memory corruption in MPP performance while accessing DSM watermark using external memory address. Memory corruption in MPP performance while accessing DSM watermark using external memory address.

CVE-2023-33063 [HIGH] CWE-416 CVE-2023-33063: Memory corruption in DSP Services during a remote call from HLOS to DSP. Memory corruption in DSP Services during a remote call from HLOS to DSP.