Total
3021 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-33259 | 1 Qualcomm | 24 Mdm8207, Mdm8207 Firmware, Mdm9205 and 21 more | 2024-08-03 | 9.8 Critical |
| Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received. | ||||
| CVE-2022-33277 | 1 Qualcomm | 486 Aqt1000, Aqt1000 Firmware, Ar8031 and 483 more | 2024-08-03 | 8.4 High |
| Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. | ||||
| CVE-2022-33278 | 1 Qualcomm | 246 Aqt1000, Aqt1000 Firmware, Ar8035 and 243 more | 2024-08-03 | 7.8 High |
| Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity. | ||||
| CVE-2022-33288 | 1 Qualcomm | 256 315 5g Iot Modem, 315 5g Iot Modem Firmware, Aqt1000 and 253 more | 2024-08-03 | 9.3 Critical |
| Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information. | ||||
| CVE-2022-33232 | 1 Qualcomm | 222 Aqt1000, Aqt1000 Firmware, Ar8035 and 219 more | 2024-08-03 | 9.3 Critical |
| Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory. | ||||
| CVE-2022-33276 | 1 Qualcomm | 268 Ar8035, Ar8035 Firmware, Ar9380 and 265 more | 2024-08-03 | 8.4 High |
| Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command. | ||||
| CVE-2022-33230 | 1 Qualcomm | 88 Aqt1000, Aqt1000 Firmware, Qca6420 and 85 more | 2024-08-03 | 6.7 Medium |
| Memory corruption in FM Host due to buffer copy without checking the size of input in FM Host | ||||
| CVE-2022-33226 | 1 Qualcomm | 66 Aqt1000, Aqt1000 Firmware, Qam8255p and 63 more | 2024-08-03 | 6.7 Medium |
| Memory corruption due to buffer copy without checking the size of input in Core while processing ioctl commands from diag client applications. | ||||
| CVE-2022-33224 | 1 Qualcomm | 92 Aqt1000, Aqt1000 Firmware, Qam8255p and 89 more | 2024-08-03 | 6.7 Medium |
| Memory corruption in core due to buffer copy without check9ing the size of input while processing ioctl queries. | ||||
| CVE-2022-33217 | 1 Qualcomm | 16 Sd 8 Gen1 5g Firmware, Sm8475, Wcd9380 and 13 more | 2024-08-03 | 7.8 High |
| Memory corruption in Qualcomm IPC due to buffer copy without checking the size of input while starting communication with a compromised kernel. in Snapdragon Mobile | ||||
| CVE-2022-33213 | 1 Qualcomm | 418 Apq8009, Apq8009 Firmware, Apq8009w and 415 more | 2024-08-03 | 7.5 High |
| Memory corruption in modem due to buffer overflow while processing a PPP packet | ||||
| CVE-2022-32981 | 1 Linux | 1 Linux Kernel | 2024-08-03 | 7.8 High |
| An issue was discovered in the Linux kernel through 5.18.3 on powerpc 32-bit platforms. There is a buffer overflow in ptrace PEEKUSER and POKEUSER (aka PEEKUSR and POKEUSR) when accessing floating point registers. | ||||
| CVE-2022-32941 | 1 Apple | 3 Ipados, Iphone Os, Macos | 2024-08-03 | 9.8 Critical |
| The issue was addressed with improved bounds checks. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, iOS 16.1 and iPadOS 16, macOS Monterey 12.6.1, macOS Big Sur 11.7.1. A buffer overflow may result in arbitrary code execution. | ||||
| CVE-2022-32891 | 2 Apple, Redhat | 5 Iphone Os, Safari, Tvos and 2 more | 2024-08-03 | 6.1 Medium |
| The issue was addressed with improved UI handling. This issue is fixed in Safari 16, tvOS 16, watchOS 9, iOS 16. Visiting a website that frames malicious content may lead to UI spoofing. | ||||
| CVE-2022-32788 | 1 Apple | 5 Ipados, Iphone Os, Macos and 2 more | 2024-08-03 | 9.8 Critical |
| A buffer overflow was addressed with improved bounds checking. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. A remote user may be able to cause kernel code execution. | ||||
| CVE-2022-32524 | 1 Schneider-electric | 1 Interactive Graphical Scada System | 2024-08-03 | 9.8 Critical |
| A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted time reduced data messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170) | ||||
| CVE-2022-32504 | 2024-08-03 | 9.8 Critical | ||
| An issue was discovered on certain Nuki Home Solutions devices. The code used to parse the JSON objects received from the WebSocket service provided by the device leads to a stack buffer overflow. An attacker would be able to exploit this to gain arbitrary code execution on a KeyTurner device. This affects Nuki Smart Lock 3.0 before 3.3.5 and 2.0 before 2.12.4, as well as Nuki Bridge v1 before 1.22.0 and v2 before 2.13.2. | ||||
| CVE-2022-32522 | 1 Schneider-electric | 1 Interactive Graphical Scada System | 2024-08-03 | 9.8 Critical |
| A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted mathematically reduced data request messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170) | ||||
| CVE-2022-32523 | 1 Schneider-electric | 1 Interactive Graphical Scada System | 2024-08-03 | 9.8 Critical |
| A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted online data request messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170) | ||||
| CVE-2022-32527 | 1 Schneider-electric | 1 Interactive Graphical Scada System | 2024-08-03 | 9.8 Critical |
| A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted alarm cache data messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22170) | ||||