CWE-823
Use of Out-of-range Pointer Offset
The product performs pointer arithmetic on a valid pointer, but it uses an offset that can point outside of the intended range of valid memory locations for the resulting pointer.
94 vulnerabilities with CWE-823
CVE-2023-43534
HIGH
Qualcomm TID to Link Mapping Firmware - Memory Corruption
CVSS 8.6
CVE-2023-43516
HIGH
Qualcomm FastConnect and Snapdragon Firmware - Memory Corruption
CVSS 7.8
CVE-2023-43513
HIGH
Qualcomm Modem and Networking Firmware - Memory Corruption
CVSS 7.8
CVE-2023-33067
MEDIUM
Qualcomm 9206 LTE Modem Firmware - Memory Corruption in Audio via START Command
CVSS 6.7
CVE-2023-33110
HIGH
PCM host voice audio driver - Memory Corruption
CVSS 7.8
CVE-2023-33033
HIGH
Qualcomm 315 5G IoT Modem Firmware - Memory Corruption in Audio Playback with Speaker Protection
CVSS 8.4
CVE-2023-6560
MEDIUM
Linux Kernel < 6.6 - Out-of-Bounds Memory Access in io_uring SQ/CQ Rings
CVSS 5.5
CVE-2023-33106
HIGH
KEV
Qualcomm AR8035 and related firmware - Memory Corruption via IOCTL_KGSL_GPU_AUX_COMMAND AUX Sync Points
CVSS 8.4
CVE-2023-33079
HIGH
Qualcomm AR8035 and related firmware - Memory Corruption in Audio ADSP Recording
CVSS 7.8
CVE-2023-22388
CRITICAL
Qualcomm Modem Firmware - Memory Corruption in Multi-mode Call Processor
CVSS 9.8
CVE-2023-46724
HIGH
Squid 3.3.0.1-5.9 and < 6.4 - Denial of Service via Crafted SSL Certificate in TLS Handshake
CVSS 8.6
CVE-2023-24855
CRITICAL
Modem <AS Security Exchange - Memory Corruption
CVSS 9.8
CVE-2023-20187
HIGH
Cisco IOS XE - Denial of Service via IPv6 Multicast Packet Handling
CVSS 8.6
CVE-2023-28564
HIGH
Qualcomm WLAN HAL - Memory Corruption
CVSS 7.8
CVE-2023-28575
MEDIUM
Qualcomm Firmware - Type Confusion in cam_get_device_priv
CVSS 6.7
CVE-2023-22387
HIGH
Qualcomm VM Compromise Firmware - Memory Corruption
CVSS 7.8
CVE-2023-2426
MEDIUM
vim/vim <9.0.1499 - Memory Corruption
CVSS 5.5
CVE-2022-46378
MEDIUM
Weston Embedded uC-FTPs <1.98.00 - DoS
CVSS 6.5
CVE-2022-46377
MEDIUM
Weston Embedded uC-FTPs < 1.98.00 - DoS
CVSS 6.5
CVE-2022-25709
HIGH
Qualcomm Modem Firmware - Memory Corruption
CVSS 8.4
CVE-2022-25694
HIGH
Qualcomm Modem Firmware - Memory Corruption via Out-of-Range Pointer Offset in UIM
CVSS 8.4
CVE-2022-33246
MEDIUM
Qualcomm APQ8096AU Firmware - Memory Corruption in Audio via Invalid Session ID
CVSS 6.7
CVE-2022-43665
MEDIUM
ESTsoft Alyac 2.5.8.645 - Denial of Service via Malicious PE File
CVSS 5.5
CVE-2022-42264
HIGH
NVIDIA GPU Display Driver 470-470.161.03 - Use-After-Free in Kernel Mode Layer
CVSS 7.1
CVE-2022-32142
HIGH
CODESYS PLCWinNT 2.0-2.4.7.57 and Runtime Toolkit 2.0-2.4.7.57 - Out-of-Bounds Read and Write via Invalid Offset
CVSS 8.1
Details
Vulnerabilities
94