CWE-126 <span class="text-2xl md:text-3xl font-bold ml-2" style="color:var(--text-secondary)">— Buffer Over-read

CVE-2023-21659HIGHCVSS 7.5EG 7.5

Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.

CVE-2023-21660HIGHCVSS 7.5EG 7.5

Transient DOS in WLAN Firmware while processing frames with missing header fields.

CVE-2023-21661HIGHCVSS 7.5EG 7.5

Transient DOS in WLAN Firmware while parsing FT Information Elements.

CVE-2023-21667MEDIUMCVSS 6.5EG 6.5

Transient DOS while parsing WLAN beacon or probe-response frame.

2023-09-05

Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard.

CVE-2023-21669HIGHCVSS 8.2EG 8.2

CVE-2023-21697MEDIUMCVSS 6.2EG 6.2

Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address.

CVE-2023-21701HIGHCVSS 7.5EG 7.5

Windows Internet Storage Name Service (iSNS) Server Information Disclosure Vulnerability

CVE-2023-21720MEDIUMCVSS 5.3EG 5.3

Microsoft Protected Extensible Authentication Protocol (PEAP) Denial of Service Vulnerability

CVE-2023-21811HIGHCVSS 7.5EG 7.5

Microsoft Edge (Chromium-based) Tampering Vulnerability

CVE-2023-21813HIGHCVSS 7.5EG 7.5

Windows iSCSI Service Denial of Service Vulnerability

CVE-2023-21820HIGHCVSS 7.4EG 7.4

Windows Secure Channel Denial of Service Vulnerability

CVE-2023-22385HIGHCVSS 8.2EG 8.2

Windows Distributed File System (DFS) Remote Code Execution Vulnerability

CVE-2023-23571HIGHCVSS 7.5EG 8.2

Memory Corruption in Data Modem while making a MO call or MT VOLTE call.

2023-07-06

An access violation vulnerability exists in the eventcore functionality of Milesight UR32L v32.3.0.5. A specially crafted network request can lead to denial of service. An attacker can send a network request to trigger this vulnerability.

CVE-2023-24513MEDIUMCVSS 6.5EG 7.5

2023-04-12

On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe) can lead to a potential denial of service attack by sending malformed packets to the switch. This causes a leak of packet buffers and if enough …

CVE-2023-24848HIGHCVSS 8.2EG 8.2

CVE-2023-24849HIGHCVSS 8.2EG 8.2

Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.

CVE-2023-24857MEDIUMCVSS 6.5EG 6.5

Information Disclosure in data Modem while parsing an FMTP line in an SDP message.

2023-03-14

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

CVE-2023-24858HIGHCVSS 7.5EG 6.5

2023-03-14

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

CVE-2023-24870MEDIUMCVSS 6.5EG 6.5

2023-03-14

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

CVE-2023-24883MEDIUMCVSS 6.5EG 6.5

2023-04-11

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

CVE-2023-24901HIGHCVSS 7.5EG 7.5

2023-05-09

Windows NFS Portmapper Information Disclosure Vulnerability

CVE-2023-24942HIGHCVSS 7.5EG 7.5

2023-05-09

Remote Procedure Call Runtime Denial of Service Vulnerability

CVE-2023-28266MEDIUMCVSS 5.5EG 5.5

2023-04-11

Windows Common Log File System Driver Information Disclosure Vulnerability

CVE-2023-28267MEDIUMCVSS 6.5EG 6.5

2023-04-11

Remote Desktop Protocol Client Information Disclosure Vulnerability

CVE-2023-28541HIGHCVSS 7.8EG 7.8

2023-07-04

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

CVE-2023-28542HIGHCVSS 7.8EG 7.8

2023-07-04

Memory Corruption in WLAN HOST while fetching TX status information.

CVE-2023-28553MEDIUMCVSS 6.1EG 5.5

CVE-2023-28554MEDIUMCVSS 6.1EG 5.5

Information Disclosure in WLAN Host when processing WMI event command.

CVE-2023-28555HIGHCVSS 7.5EG 7.5

Information Disclosure in Qualcomm IPC while reading values from shared memory in VM.

2023-08-08

Transient DOS in Audio while remapping channel buffer in media codec decoding.

CVE-2023-28563MEDIUMCVSS 6.1EG 5.5

CVE-2023-28566MEDIUMCVSS 6.1EG 5.5

Information disclosure in IOE Firmware while handling WMI command.

CVE-2023-28568MEDIUMCVSS 6.1EG 5.5

Information disclosure in WLAN HAL while handling the WMI state info command.

CVE-2023-28569MEDIUMCVSS 6.1EG 5.5

Information disclosure in WLAN HAL when reception status handler is called.

CVE-2023-28571MEDIUMCVSS 6.1EG 6.1

Information disclosure in WLAN HAL while handling command through WMI interfaces.

CVE-2023-28572MEDIUMCVSS 6.6EG 8.8

Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan.

CVE-2023-32085MEDIUMCVSS 5.5EG 5.5

Memory corruption in WLAN HOST while processing the WLAN scan descriptor list.

2023-07-11

Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability

CVE-2023-33015HIGHCVSS 7.5EG 7.5

2023-09-05

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

CVE-2023-33016HIGHCVSS 7.5EG 7.5

2023-09-05

Transient DOS in WLAN firmware while parsing MLO (multi-link operation).

CVE-2023-33026HIGHCVSS 7.5EG 7.5

CVE-2023-33027HIGHCVSS 7.5EG 7.5

Transient DOS in WLAN Firmware while parsing a NAN management frame.

CVE-2023-33040HIGHCVSS 7.5EG 7.5

Transient DOS in WLAN Firmware while parsing rsn ies.

2024-01-02

Transient DOS in Data Modem during DTLS handshake.

CVE-2023-33047HIGHCVSS 7.5EG 7.5

CVE-2023-33048HIGHCVSS 7.5EG 7.5

Transient DOS in WLAN Firmware while parsing no-inherit IES.