Security Vulnerabilities - CVEs Published In March 2023
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-03-10
In telephony service, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-03-10
Memory corruption due to stack based buffer overflow in core while sending command from USB of large size.
CVSS Score
5.9
EPSS Score
0.001
Published
2023-03-10
Transient DOS in modem due to reachable assertion.
CVSS Score
7.5
EPSS Score
0.004
Published
2023-03-10
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-03-10
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.
CVSS Score
7.5
EPSS Score
0.005
Published
2023-03-10
A potential security vulnerability has been identified in HPE Superdome Flex and Superdome Flex 280 servers. The vulnerability could be locally exploited to allow disclosure of information. HPE has made the following software to resolve the vulnerability in HPE Superdome Flex Servers v3.65.8 and Superdome Flex 280 Servers v1.45.8.
CVSS Score
2.3
EPSS Score
0.001
Published
2023-03-10
Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms.
CVSS Score
7.3
EPSS Score
0.002
Published
2023-03-10