Security Vulnerabilities - CVEs Published In September 2023
A malformed DLC can trigger Memory Corruption in SNPE library due to out of bounds read, such as by loading an untrusted model (e.g. from a remote source).
CVSS Score
8.1
EPSS Score
0.001
Published
2023-09-05
Memory corruption in WLAN while sending transmit command from HLOS to UTF handlers.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-09-05
Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-09-05
Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-09-05
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-09-05
Memory corruption in WLAN handler while processing PhyID in Tx status handler.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-09-05
Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-09-05
Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-09-05
Memory corruption while handling payloads from remote ESL.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-09-05
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-09-05