WorldLeaks
You must login to view this content
Aggregator
WorldLeaks
2 weeks 4 days ago
You must login to view this content
cohenido
WorldLeaks
2 weeks 4 days ago
You must login to view this content
cohenido
CVE-2023-33054 | Qualcomm 4 Gen 1 Mobile Platform GNSS Assistance Data improper authentication
2 weeks 4 days ago
A vulnerability has been found in Qualcomm 4 Gen 1 Mobile Platform, 4 Gen 2 Mobile Platform, 7c+ Gen 3 Compute, 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8+ Gen 1 Mobile Platform, 8+ Gen 2 Mobile Platform, 315 5G IoT Modem, 480 5G Mobile Platform, 480+ 5G Mobile Platform SM4350-AC, 660 Mobile Platform, 665 Mobile Platform, 675 Mobile Platform, 678 Mobile Platform SM6150-AC, 680 4G Mobile Platform, 685 4G Mobile Platform SM6225-AD, 690 5G Mobile Platform, 695 5G Mobile Platform, 720G Mobile Platform, 730 Mobile Platform SM7150-AA, 730G Mobile Platform SM7150-AB, 732G Mobile Platform SM7150-AC, 750G 5G Mobile Platform, 765 5G Mobile Platform SM7250-AA, 765G 5G Mobile Platform SM7250-AB, 768G 5G Mobile Platform SM7250-AC, 778G+ 5G Mobile Platform SM7325-AE, 778G 5G Mobile Platform, 780G 5G Mobile Platform, 782G Mobile Platform SM7325-AF, 835 Mobile PC Platform, 845 Mobile Platform, 855 Mobile Platform, 855+, 860 Mobile Platform SM8150-AC, 865 5G Mobile Platform, 865+ 5G Mobile Platform SM8250-AB, 870 5G Mobile Platform SM8250-AC, 888 5G Mobile Platform, 888+ 5G Mobile Platform SM8350-AC, AQT1000, AR8035, Auto 5G Modem-RF Gen 2, CSRA6620, CSRA6640, FastConnect 6200, FastConnect 6700, FastConnect 6800, FastConnect 6900, FastConnect 7800, QAM8295P, QCA6174A, QCA6310, QCA6320, QCA6335, QCA6391, QCA6420, QCA6421, QCA6426, QCA6430, QCA6431, QCA6436, QCA6574, QCA6574A, QCA6574AU, QCA6584AU, QCA6595, QCA6595AU, QCA6696, QCA6698AQ, QCA8081, QCA8337, QCA9377, QCC710, QCM2290, QCM4290, QCM4325, QCM4490, QCM5430, QCM6125, QCM6490, QCM8550, QCN6024, QCN6224, QCN6274, QCN9024, QCS410, QCS610, QCS2290, QCS4290, QCS4490, QCS5430, QCS6125, QCS6490, QCS8250, QCS8550, QFW7114, QFW7124, Qualcomm 215 Mobile Platform and Qualcomm Video Collaboration VC1 Platform and classified as critical. This vulnerability affects unknown code of the component GNSS Assistance Data Handler. The manipulation leads to improper authentication.
This vulnerability was named CVE-2023-33054. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-33043 | Qualcomm 4 Gen 1 Mobile Platform Modem denial of service
2 weeks 4 days ago
A vulnerability has been found in Qualcomm 4 Gen 1 Mobile Platform, 4 Gen 2 Mobile Platform, 7c+ Gen 3 Compute, 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8+ Gen 1 Mobile Platform, 8+ Gen 2 Mobile Platform, 480 5G Mobile Platform, 480+ 5G Mobile Platform SM4350-AC, 695 5G Mobile Platform, 778G+ 5G Mobile Platform SM7325-AE, 778G 5G Mobile Platform, 780G 5G Mobile Platform, 782G Mobile Platform SM7325-AF, 888 5G Mobile Platform, 888+ 5G Mobile Platform SM8350-AC, AR8035, FastConnect 6200, FastConnect 6700, FastConnect 6900, FastConnect 7800, QCA6391, QCA8081, QCA8337, QCM4490, QCM6490, QCM8550, QCN6024, QCN9024, QCS4490, QCS6490, QCS8550, Qualcomm Video Collaboration VC3 Platform, SD888, SDX57M, SM7315, SM7325P, SM8550P, WCD9370, WCD9375, WCD9380, WCD9385, WCD9390, WCD9395, WCN3950, WCN3988, WCN6740, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835, WSA8840, WSA8845, WSA8845H, X65 5G Modem-RF System and X70 Modem-RF System and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Modem. The manipulation leads to denial of service.
This vulnerability is known as CVE-2023-33043. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-33044 | Qualcomm 4 Gen 1 Mobile Platform Data Modem denial of service
2 weeks 4 days ago
A vulnerability was found in Qualcomm 4 Gen 1 Mobile Platform, 4 Gen 2 Mobile Platform, 7c+ Gen 3 Compute, 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8+ Gen 1 Mobile Platform, 8+ Gen 2 Mobile Platform, 315 5G IoT Modem, 480 5G Mobile Platform, 480+ 5G Mobile Platform SM4350-AC, 690 5G Mobile Platform, 695 5G Mobile Platform, 750G 5G Mobile Platform, 765 5G Mobile Platform SM7250-AA, 765G 5G Mobile Platform SM7250-AB, 768G 5G Mobile Platform SM7250-AC, 778G+ 5G Mobile Platform SM7325-AE, 778G 5G Mobile Platform, 780G 5G Mobile Platform, 782G Mobile Platform SM7325-AF, 855 Mobile Platform, 855+, 860 Mobile Platform SM8150-AC, 865 5G Mobile Platform, 865+ 5G Mobile Platform SM8250-AB, 870 5G Mobile Platform SM8250-AC, 888 5G Mobile Platform, 888+ 5G Mobile Platform SM8350-AC, AR8035, Auto 5G Modem-RF, FastConnect 6200, FastConnect 6700, FastConnect 6800, FastConnect 6900, FastConnect 7800, QCA6391, QCA6421, QCA6426, QCA6431, QCA6436, QCA6574A, QCA6574AU, QCA6595AU, QCA6696, QCA6698AQ, QCA8081, QCA8337, QCM4490, QCM6490, QCM8550, QCN6024, QCN9024, QCS4490, QCS6490, QCS8550, Qualcomm Video Collaboration VC3 Platform, SD855, SD865 5G, SD888, SDX55, SDX57M, SM7250P, SM7315, SM7325P, SM8550P, SXR2130, WCD9341, WCD9360, WCD9370, WCD9375, WCD9380, WCD9385, WCD9390, WCD9395, WCN3950, WCN3988, WCN6740, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835, WSA8840, WSA8845, WSA8845H, X55 5G Modem-RF System, X65 5G Modem-RF System, X70 Modem-RF System and XR2 5G Platform and classified as problematic. Affected by this issue is some unknown functionality of the component Data Modem. The manipulation leads to denial of service.
This vulnerability is handled as CVE-2023-33044. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-33070 | Qualcomm 210 Processor IO Call improper authentication
2 weeks 4 days ago
A vulnerability was found in Qualcomm 210 Processor, 212 Mobile Platform, 429 Mobile Platform, 660 Mobile Platform, 665 Mobile Platform, 675 Mobile Platform, 678 Mobile Platform SM6150-AC, 730 Mobile Platform SM7150-AA, 730G Mobile Platform SM7150-AB, 732G Mobile Platform SM7150-AC, 845 Mobile Platform, 855 Mobile Platform, 855+, 860 Mobile Platform SM8150-AC, AQT1000, AR8031, AR8035, Auto 4G Modem, Auto 5G Modem-RF, C-V2X 9150, CSRA6620, CSRA6640, CSRB31024, FastConnect 6200, QAM8255P, QAM8295P, QAM8775P, QCA6174A, QCA6310, QCA6335, QCA6391, QCA6420, QCA6430, QCA6564, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6595, QCA6595AU, QCA6696, QCA6698AQ, QCA8337, QCA9377, QCM6125, QCN9074, QCS410, QCS610, QCS6125, QCS8155, Qualcomm 205 Mobile Platform, Qualcomm 215 Mobile Platform, Qualcomm Video Collaboration VC1 Platform, Qualcomm Video Collaboration VC3 Platform, Robotics RB3 Platform, SA6145P, SA6150P, SA6155, SA6155P, SA8145P, SA8150P, SA8155, SA8155P, SA8195P, SA8255P, SA8295P, SA8540P, SA8770P, SA8775P, SA9000P, SD660, SD 675, SD675, SD730, SD855, SDM429W, SDX55, Smart Audio 400 Platform, Vision Intelligence 300 Platform, Vision Intelligence 400 Platform, WCD9326, WCD9335, WCD9340, WCD9341, WCD9360, WCD9370, WCD9371, WCD9375, WCN3610, WCN3615, WCN3620, WCN3660B, WCN3680, WCN3680B, WCN3950, WCN3980, WCN3990, Wear 4100+ Platform, WSA8810 and WSA8815. It has been classified as critical. This affects an unknown part of the component IO Call Handler. The manipulation leads to improper authentication.
This vulnerability is uniquely identified as CVE-2023-33070. The attack needs to be approached locally. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-33079 | Qualcomm 4 Gen 1 Mobile Platform Audio memory corruption
2 weeks 4 days ago
A vulnerability was found in Qualcomm 4 Gen 1 Mobile Platform, 7c+ Gen 3 Compute, 8 Gen 2 Mobile Platform, 8+ Gen 2 Mobile Platform, 460 Mobile Platform, 480 5G Mobile Platform, 480+ 5G Mobile Platform SM4350-AC, 660 Mobile Platform, 662 Mobile Platform, 680 4G Mobile Platform, 685 4G Mobile Platform SM6225-AD, 690 5G Mobile Platform, 695 5G Mobile Platform, 750G 5G Mobile Platform, 765 5G Mobile Platform SM7250-AA, 765G 5G Mobile Platform SM7250-AB, 768G 5G Mobile Platform SM7250-AC, 778G+ 5G Mobile Platform SM7325-AE, 778G 5G Mobile Platform, 780G 5G Mobile Platform, 782G Mobile Platform SM7325-AF, 865 5G Mobile Platform, 865+ 5G Mobile Platform SM8250-AB, 870 5G Mobile Platform SM8250-AC, 888 5G Mobile Platform, 888+ 5G Mobile Platform SM8350-AC, AR8035, Auto 5G Modem-RF, Auto 5G Modem-RF Gen 2, CSRA6620, CSRA6640, FastConnect 6200, FastConnect 6700, FastConnect 6800, FastConnect 6900, FastConnect 7800, Flight RB5 5G Platform, QAM8255P, QAM8295P, QAM8650P, QAM8775P, QCA6391, QCA6426, QCA6436, QCA6574, QCA6574A, QCA6574AU, QCA6584AU, QCA6595, QCA6595AU, QCA6696, QCA6698AQ, QCA6797AQ, QCA8081, QCA8337, QCC710, QCM2290, QCM4290, QCM4325, QCM5430, QCM6490, QCM8550, QCN6224, QCN6274, QCN9011, QCN9012, QCS410, QCS610, QCS2290, QCS4290, QCS5430, QCS6490, QCS7230, QCS8250, QCS8550, QFW7114, QFW7124, QRB5165M, QRB5165N, Qualcomm 215 Mobile Platform, Qualcomm Video Collaboration VC1 Platform, Qualcomm Video Collaboration VC3 Platform, Qualcomm Video Collaboration VC5 Platform, Robotics RB5 Platform, SA4150P, SA4155P, SA6145P, SA6150P, SA6155P, SA8145P, SA8150P, SA8155P, SA8195P, SA8255P, SA8295P, SA8770P, SA8775P, SA9000P, SD660 and SD865 5G. It has been rated as critical. This issue affects some unknown processing of the component Audio. The manipulation leads to memory corruption.
The identification of this vulnerability is CVE-2023-33079. Local access is required to approach this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-33080 | Qualcomm 4 Gen 1 Mobile Platform denial of service
2 weeks 4 days ago
A vulnerability classified as problematic has been found in Qualcomm 4 Gen 1 Mobile Platform, 4 Gen 2 Mobile Platform, 7c+ Gen 3 Compute, 7c Compute Platform SC7180-AC, 7c Gen 2 Compute Platform SC7180-AD Rennell Pro, 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8+ Gen 1 Mobile Platform, 8+ Gen 2 Mobile Platform, 8c Compute Platform SC8180X-AD Poipu Lite, 8c Compute Platform SC8180XP-AD Poipu Lite, 8cx Compute Platform SC8180X-AA, 8cx Compute Platform SC8180XP-AC, 8cx Gen 2 5G Compute Platform SC8180X-AC, 8cx Gen 2 5G Compute Platform SC8180XP-AA, 8cx Gen 3 Compute Platform SC8280XP-AB, 315 5G IoT Modem, 460 Mobile Platform, 480 5G Mobile Platform, 480+ 5G Mobile Platform SM4350-AC, 630 Mobile Platform, 636 Mobile Platform, 660 Mobile Platform, 662 Mobile Platform, 665 Mobile Platform, 670 Mobile Platform, 675 Mobile Platform, 678 Mobile Platform SM6150-AC, 680 4G Mobile Platform, 685 4G Mobile Platform SM6225-AD, 690 5G Mobile Platform, 695 5G Mobile Platform, 710 Mobile Platform, 712 Mobile Platform, 720G Mobile Platform, 730 Mobile Platform SM7150-AA, 730G Mobile Platform SM7150-AB, 732G Mobile Platform SM7150-AC, 750G 5G Mobile Platform, 765 5G Mobile Platform SM7250-AA, 765G 5G Mobile Platform SM7250-AB, 768G 5G Mobile Platform SM7250-AC, 778G+ 5G Mobile Platform SM7325-AE, 778G 5G Mobile Platform, 780G 5G Mobile Platform, 782G Mobile Platform SM7325-AF, 820 Automotive Platform, 820 Mobile Platform, 821 Mobile Platform, 835 Mobile PC Platform, 845 Mobile Platform, 850 Mobile Compute Platform, 855 Mobile Platform, 855+, 860 Mobile Platform SM8150-AC, 865 5G Mobile Platform, 865+ 5G Mobile Platform SM8250-AB, 870 5G Mobile Platform SM8250-AC, 888 5G Mobile Platform, 888+ 5G Mobile Platform SM8350-AC, 1200 Wearable Platform, 9206 LTE Modem, AB, AF Poipu Pro, APQ8017, APQ8064AU, AQT1000, AR2 Gen 1 Platform, AR8031, AR8035, AR9380, Auto 4G Modem, Auto 5G Modem-RF, BB, CSR8811, CSRA6620, CSRA6640, CSRB31024, FastConnect 6200, FastConnect 6700, FastConnect 6800, FastConnect 6900, FastConnect 7800, Flight RB5 5G Platform, Home Hub 100 Platform, Immersive Home 214 Platform, Immersive Home 216 Platform, Immersive Home 316 Platform, Immersive Home 318 Platform, Immersive Home 326 Platform, Immersive Home 3210 Platform, IPQ4018, IPQ4028, IPQ4029, IPQ5010, IPQ5028, IPQ5332, IPQ6000, IPQ6010 and IPQ6018. Affected is an unknown function. The manipulation leads to denial of service.
This vulnerability is traded as CVE-2023-33080. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-33087 | Qualcomm 4 Gen 2 Mobile Platform RX Intent Request memory corruption
2 weeks 4 days ago
A vulnerability classified as critical was found in Qualcomm 4 Gen 2 Mobile Platform, 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8+ Gen 1 Mobile Platform, 8+ Gen 2 Mobile Platform, 680 4G Mobile Platform, 685 4G Mobile Platform SM6225-AD, AR2 Gen 1 Platform, AR8035, Auto 5G Modem-RF, Auto 5G Modem-RF Gen 2, CSRA6620, CSRA6640, FastConnect 6200, FastConnect 6700, FastConnect 6900, FastConnect 7800, Flight RB5 5G Platform, QAM8255P, QAM8295P, QAM8650P, QAM8775P, QCA6391, QCA6574, QCA6574A, QCA6574AU, QCA6584AU, QCA6595, QCA6595AU, QCA6696, QCA6698AQ, QCA6797AQ, QCA8081, QCA8337, QCC710, QCM4325, QCM4490, QCM5430, QCM6490, QCM8550, QCN6224, QCN6274, QCN9011, QCN9012, QCS410, QCS610, QCS4490, QCS5430, QCS6490, QCS7230, QCS8250, QCS8550, QDU1000, QDU1010, QDU1110, QDU1210, QDX1010, QDX1011, QFW7114, QFW7124, QRB5165M, QRB5165N, QRU1032, QRU1052, QRU1062, Qualcomm Video Collaboration VC1 Platform, Qualcomm Video Collaboration VC3 Platform, Qualcomm Video Collaboration VC5 Platform, Robotics RB5 Platform, SA4150P, SA4155P, SA6145P, SA6150P, SA6155P, SA8145P, SA8150P, SA8155P, SA8195P, SA8255P, SA8295P, SA8770P, SA8775P, SA9000P, SD 8 Gen1 5G, SG4150P, SG8275P, SM8550P, Smart Audio 400 Platform, SSG2115P, SSG2125P, SW5100, SW5100P, SXR1230P, SXR2230P, W5+ Gen 1 Wearable Platform, WCD9335, WCD9340, WCD9341, WCD9370 and WCD9375. This vulnerability affects unknown code of the component RX Intent Request Handler. The manipulation leads to memory corruption.
This vulnerability was named CVE-2023-33087. Attacking locally is a requirement. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-33088 | Qualcomm 4 Gen 1 Mobile Platform cmd memory corruption
2 weeks 4 days ago
A vulnerability, which was classified as critical, has been found in Qualcomm 4 Gen 1 Mobile Platform, 4 Gen 2 Mobile Platform, 7c+ Gen 3 Compute, 7c Compute Platform SC7180-AC, 7c Gen 2 Compute Platform SC7180-AD Rennell Pro, 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8+ Gen 1 Mobile Platform, 8+ Gen 2 Mobile Platform, 8c Compute Platform SC8180X-AD Poipu Lite, 8c Compute Platform SC8180XP-AD Poipu Lite, 8cx Compute Platform SC8180X-AA, 8cx Compute Platform SC8180XP-AC, 8cx Gen 2 5G Compute Platform SC8180X-AC, 8cx Gen 2 5G Compute Platform SC8180XP-AA, 8cx Gen 3 Compute Platform SC8280XP-AB, 315 5G IoT Modem, 460 Mobile Platform, 480 5G Mobile Platform, 480+ 5G Mobile Platform SM4350-AC, 660 Mobile Platform, 662 Mobile Platform, 665 Mobile Platform, 670 Mobile Platform, 675 Mobile Platform, 678 Mobile Platform SM6150-AC, 680 4G Mobile Platform, 685 4G Mobile Platform SM6225-AD, 690 5G Mobile Platform, 695 5G Mobile Platform, 710 Mobile Platform, 712 Mobile Platform, 720G Mobile Platform, 730 Mobile Platform SM7150-AA, 730G Mobile Platform SM7150-AB, 732G Mobile Platform SM7150-AC, 750G 5G Mobile Platform, 765 5G Mobile Platform SM7250-AA, 765G 5G Mobile Platform SM7250-AB, 768G 5G Mobile Platform SM7250-AC, 778G+ 5G Mobile Platform SM7325-AE, 778G 5G Mobile Platform, 780G 5G Mobile Platform, 782G Mobile Platform SM7325-AF, 855 Mobile Platform, 855+, 860 Mobile Platform SM8150-AC, 865 5G Mobile Platform, 865+ 5G Mobile Platform SM8250-AB, 870 5G Mobile Platform SM8250-AC, 888 5G Mobile Platform, 888+ 5G Mobile Platform SM8350-AC, AB, AF Poipu Pro, AQT1000, AR2 Gen 1 Platform, AR8031, AR8035, AR9380, Auto 4G Modem, Auto 5G Modem-RF, Auto 5G Modem-RF Gen 2, BB, CSR8811, CSRA6620, CSRA6640, CSRB31024, FastConnect 6200, FastConnect 6700, FastConnect 6800, FastConnect 6900, FastConnect 7800, Flight RB5 5G Platform, Immersive Home 214 Platform, Immersive Home 216 Platform, Immersive Home 316 Platform, Immersive Home 318 Platform, Immersive Home 326 Platform, Immersive Home 3210 Platform, IPQ5010, IPQ5028, IPQ5332, IPQ6000, IPQ6010, IPQ6018, IPQ6028, IPQ8064, IPQ8065, IPQ8068, IPQ8070, IPQ8070A, IPQ8071A, IPQ8072A, IPQ8074A, IPQ8076, IPQ8076A, IPQ8078, IPQ8078A, IPQ8173 and IPQ8174. This issue affects some unknown processing. The manipulation of the argument cmd leads to memory corruption.
The identification of this vulnerability is CVE-2023-33088. It is possible to launch the attack on the local host. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-33089 | Qualcomm 7c+ Gen 3 Compute WLAN vdev Parser buffer overflow
2 weeks 4 days ago
A vulnerability has been found in Qualcomm 7c+ Gen 3 Compute, 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8+ Gen 1 Mobile Platform, 8+ Gen 2 Mobile Platform, 8c Compute Platform SC8180X-AD Poipu Lite, 8c Compute Platform SC8180XP-AD Poipu Lite, 8cx Compute Platform SC8180X-AA, 8cx Compute Platform SC8180XP-AC, 8cx Gen 2 5G Compute Platform SC8180X-AC, 8cx Gen 2 5G Compute Platform SC8180XP-AA, 8cx Gen 3 Compute Platform SC8280XP-AB, 315 5G IoT Modem, 778G+ 5G Mobile Platform SM7325-AE, 778G 5G Mobile Platform, 780G 5G Mobile Platform, 782G Mobile Platform SM7325-AF, 865 5G Mobile Platform, 865+ 5G Mobile Platform SM8250-AB, 870 5G Mobile Platform SM8250-AC, 888 5G Mobile Platform, 888+ 5G Mobile Platform SM8350-AC, AB, AF Poipu Pro, AQT1000, AR2 Gen 1 Platform, AR8035, AR9380, Auto 4G Modem, Auto 5G Modem-RF, Auto 5G Modem-RF Gen 2, BB, CSR8811, CSRB31024, FastConnect 6200, FastConnect 6700, FastConnect 6800, FastConnect 6900, FastConnect 7800, Flight RB5 5G Platform, Immersive Home 214 Platform, Immersive Home 216 Platform, Immersive Home 316 Platform, Immersive Home 318 Platform, Immersive Home 326 Platform, Immersive Home 3210 Platform, IPQ5010, IPQ5028, IPQ5332, IPQ6000, IPQ6010, IPQ6018, IPQ6028, IPQ8064, IPQ8065, IPQ8068, IPQ8070, IPQ8070A, IPQ8071A, IPQ8072A, IPQ8074A, IPQ8076, IPQ8076A, IPQ8078, IPQ8078A, IPQ8173, IPQ8174, IPQ9008, IPQ9554, IPQ9570, IPQ9574, PMP8074, QAM8255P, QAM8295P, QAM8650P, QAM8775P, QCA0000, QCA1062, QCA1064, QCA2062, QCA2064, QCA2065, QCA2066, QCA4024, QCA6391, QCA6420, QCA6421, QCA6426, QCA6430, QCA6431, QCA6436, QCA6554A, QCA6564AU, QCA6574, QCA6574A, QCA6574AU, QCA6584AU, QCA6595, QCA6595AU and QCA6678AQ and classified as critical. Affected by this vulnerability is an unknown functionality of the component WLAN vdev Parser. The manipulation leads to buffer overflow.
This vulnerability is known as CVE-2023-33089. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-33098 | Qualcomm 4 Gen 1 Mobile Platform WPA IES denial of service
2 weeks 4 days ago
A vulnerability was found in Qualcomm 4 Gen 1 Mobile Platform, 4 Gen 2 Mobile Platform, 7c+ Gen 3 Compute, 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8+ Gen 1 Mobile Platform, 8+ Gen 2 Mobile Platform, 8c Compute Platform SC8180X-AD Poipu Lite, 8c Compute Platform SC8180XP-AD Poipu Lite, 8cx Compute Platform SC8180X-AA, 8cx Compute Platform SC8180XP-AC, 8cx Gen 2 5G Compute Platform SC8180X-AC, 8cx Gen 2 5G Compute Platform SC8180XP-AA, 8cx Gen 3 Compute Platform SC8280XP-AB, 315 5G IoT Modem, 480 5G Mobile Platform, 480+ 5G Mobile Platform SM4350-AC, 660 Mobile Platform, 690 5G Mobile Platform, 695 5G Mobile Platform, 750G 5G Mobile Platform, 765 5G Mobile Platform SM7250-AA, 765G 5G Mobile Platform SM7250-AB, 768G 5G Mobile Platform SM7250-AC, 778G+ 5G Mobile Platform SM7325-AE, 778G 5G Mobile Platform, 780G 5G Mobile Platform, 782G Mobile Platform SM7325-AF, 865 5G Mobile Platform, 865+ 5G Mobile Platform SM8250-AB, 870 5G Mobile Platform SM8250-AC, 888 5G Mobile Platform, 888+ 5G Mobile Platform SM8350-AC, AB, AF Poipu Pro, AQT1000, AR2 Gen 1 Platform, AR8031, AR8035, AR9380, Auto 4G Modem, Auto 5G Modem-RF, Auto 5G Modem-RF Gen 2, BB, CSR8811, CSRA6620, CSRA6640, CSRB31024, FastConnect 6200, FastConnect 6700, FastConnect 6800, FastConnect 6900, FastConnect 7800, Flight RB5 5G Platform, Immersive Home 214 Platform, Immersive Home 216 Platform, Immersive Home 316 Platform, Immersive Home 318 Platform, Immersive Home 326 Platform, Immersive Home 3210 Platform, IPQ5010, IPQ5028, IPQ5332, IPQ6000, IPQ6010, IPQ6018, IPQ6028, IPQ8064, IPQ8065, IPQ8068, IPQ8070A, IPQ8071A, IPQ8072A, IPQ8074A, IPQ8076, IPQ8076A, IPQ8078, IPQ8078A, IPQ8173, IPQ8174, IPQ9008, IPQ9554, IPQ9570, IPQ9574, PMP8074, QAM8255P, QAM8295P, QAM8650P, QAM8775P, QCA0000, QCA1062, QCA1064, QCA2062, QCA2064, QCA2065, QCA2066, QCA4024, QCA6391, QCA6420 and QCA6421. It has been declared as problematic. This vulnerability affects unknown code of the component WPA IES. The manipulation leads to denial of service.
This vulnerability was named CVE-2023-33098. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2023-33092 | Qualcomm 4 Gen 1 Mobile Platform Bluetooth memory corruption
2 weeks 4 days ago
A vulnerability classified as critical was found in Qualcomm 4 Gen 1 Mobile Platform, 4 Gen 2 Mobile Platform, 7c+ Gen 3 Compute, 8 Gen 1 Mobile Platform, 8 Gen 2 Mobile Platform, 8+ Gen 2 Mobile Platform, 460 Mobile Platform, 480 5G Mobile Platform, 480+ 5G Mobile Platform SM4350-AC, 662 Mobile Platform, 680 4G Mobile Platform, 685 4G Mobile Platform SM6225-AD, 690 5G Mobile Platform, 695 5G Mobile Platform, 720G Mobile Platform, 730 Mobile Platform SM7150-AA, 730G Mobile Platform SM7150-AB, 732G Mobile Platform SM7150-AC, 765 5G Mobile Platform SM7250-AA, 765G 5G Mobile Platform SM7250-AB, 768G 5G Mobile Platform SM7250-AC, 778G+ 5G Mobile Platform SM7325-AE, 778G 5G Mobile Platform, 780G 5G Mobile Platform, 782G Mobile Platform SM7325-AF, 835 Mobile PC Platform, 855 Mobile Platform, 855+, 860 Mobile Platform SM8150-AC, 865 5G Mobile Platform, 865+ 5G Mobile Platform SM8250-AB, 870 5G Mobile Platform SM8250-AC, 888 5G Mobile Platform, 888+ 5G Mobile Platform SM8350-AC, AQT1000, FastConnect 6200, FastConnect 6700, FastConnect 6800, FastConnect 6900, FastConnect 7800, QCA6310, QCA6320, QCA6391, QCA6420, QCA6430, QCM4325, QCM4490, QCM5430, QCM6490, QCM8550, QCS4490, QCS5430, QCS6490, QCS7230, QCS8250, QCS8550, Qualcomm 215 Mobile Platform, Qualcomm Video Collaboration VC3 Platform, Qualcomm Video Collaboration VC5 Platform, SD730, SD835, SD855, SD888, SG4150P, SM6250, SM7250P, SM7315, SM7325P, SM8550P, WCD9326, WCD9335, WCD9340, WCD9341, WCD9370, WCD9375, WCD9380, WCD9385, WCD9390, WCD9395, WCN3615, WCN3660B, WCN3680B, WCN3950, WCN3980, WCN3988, WCN3990, WCN6740, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835, WSA8840, WSA8845, WSA8845H and X55 5G Modem-RF System. This vulnerability affects unknown code of the component Bluetooth. The manipulation leads to memory corruption.
This vulnerability was named CVE-2023-33092. Local access is required to approach this attack. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
#BHUSA: Microsoft Debuts AI Agent Able to Reverse Engineer Malware
2 weeks 4 days ago
A new Microsoft AI agent, named Project Ire, is able to autonomously classify malware at a global scale with a high level of precision
Microsoft 365 Direct Send Weaponized to Bypass Email Security Defenses
2 weeks 4 days ago
Cybersecurity researchers have uncovered a sophisticated spear phishing campaign that weaponizes Microsoft 365’s Direct Send feature to bypass traditional email security defenses and conduct hyper-personalized credential theft attacks. The campaign demonstrates an alarming evolution in attack sophistication, combining technical exploitation of legitimate Microsoft services with advanced social engineering techniques designed to disarm even experienced security […]
The post Microsoft 365 Direct Send Weaponized to Bypass Email Security Defenses appeared first on Cyber Security News.
Tushar Subhra Dutta
Ваш "VPN" шпионит за вами уже месяцами, пока вы платите за "защиту" — срочно удалите эти приложения
2 weeks 4 days ago
LosPollos, TacoLoco, Adtrafico — за забавными именами скрывается мафия мобильного мошенничества.
Google Confirms Salesforce Data Breach by ShinyHunters via Vishing Scam
2 weeks 4 days ago
Google confirms a data breach by ShinyHunters hackers, who used a vishing scam to access a Salesforce database with small business customer info.
Deeba Ahmed
Securing the AI Era: Sonatype Safeguards Open Source Software Supply Chains
2 weeks 4 days ago
Open source drives modern software—but with innovation comes risk. Learn how Sonatype secures the software supply chain to enable safer, faster delivery.
The post Securing the AI Era: Sonatype Safeguards Open Source Software Supply Chains appeared first on Security Boulevard.
John D. Boyle
CVE-2025-50098 | Oracle MySQL Server up to 8.0.42/8.4.5/9.3.0 Optimizer denial of service (EUVD-2025-21482 / Nessus ID 244814)
2 weeks 4 days ago
A vulnerability was found in Oracle MySQL Server up to 8.0.42/8.4.5/9.3.0. It has been declared as problematic. This vulnerability affects unknown code of the component Optimizer. The manipulation leads to denial of service.
This vulnerability was named CVE-2025-50098. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com