Security Vulnerabilities - CVEs Published In April 2023
Information disclosure due to buffer overread in Linux sensors
CVSS Score
6.8
EPSS Score
0.0
Published
2023-04-13
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
CVSS Score
9.3
EPSS Score
0.001
Published
2023-04-13
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
CVSS Score
6.8
EPSS Score
0.0
Published
2023-04-13
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length.
CVSS Score
8.2
EPSS Score
0.001
Published
2023-04-13
Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.
CVSS Score
9.3
EPSS Score
0.001
Published
2023-04-13
Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-04-13
Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback.
CVSS Score
8.4
EPSS Score
0.0
Published
2023-04-13
Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet.
CVSS Score
8.2
EPSS Score
0.001
Published
2023-04-13
Memory corruption due to double free in core while initializing the encryption key.
CVSS Score
9.3
EPSS Score
0.0
Published
2023-04-13
Information disclosure due to buffer over-read in modem while reading configuration parameters.
CVSS Score
8.2
EPSS Score
0.001
Published
2023-04-13