Vulnerabilities > Qualcomm > Csrb31024 Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-12-05 | CVE-2023-28585 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption while loading an ELF segment in TEE Kernel. | 8.8 |
2023-12-05 | CVE-2023-28586 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE. | 6.5 |
2023-12-05 | CVE-2023-28587 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level. | 7.8 |
2023-12-05 | CVE-2023-33017 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. | 7.8 |
2023-12-05 | CVE-2023-33018 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption while using the UIM diag command to get the operators name. | 7.8 |
2023-12-05 | CVE-2023-33063 | Use After Free vulnerability in Qualcomm products Memory corruption in DSP Services during a remote call from HLOS to DSP. | 7.8 |
2023-12-05 | CVE-2023-33070 | Improper Authentication vulnerability in Qualcomm products Transient DOS in Automotive OS due to improper authentication to the secure IO calls. | 5.5 |
2023-12-05 | CVE-2023-33080 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. | 7.5 |
2023-12-05 | CVE-2023-33088 | NULL Pointer Dereference vulnerability in Qualcomm products Memory corruption when processing cmd parameters while parsing vdev. | 7.8 |
2023-12-05 | CVE-2023-33089 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS when processing a NULL buffer while parsing WLAN vdev. | 7.5 |