Vulnerabilities > Qualcomm > Csrb31024 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-07-04 CVE-2023-28541 Out-of-bounds Read vulnerability in Qualcomm products
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
local
low complexity
qualcomm CWE-125
7.8
2023-07-04 CVE-2023-28542 Out-of-bounds Read vulnerability in Qualcomm products
Memory Corruption in WLAN HOST while fetching TX status information.
local
low complexity
qualcomm CWE-125
7.8
2023-06-06 CVE-2022-33227 Double Free vulnerability in Qualcomm products
Memory corruption in Linux android due to double free while calling unregister provider after register call.
local
low complexity
qualcomm CWE-415
7.8
2023-06-06 CVE-2022-33264 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
local
low complexity
qualcomm CWE-787
7.8
2023-06-06 CVE-2022-40507 Double Free vulnerability in Qualcomm products
Memory corruption due to double free in Core while mapping HLOS address to the list.
local
low complexity
qualcomm CWE-415
7.8
2023-06-06 CVE-2022-40521 Improper Authentication vulnerability in Qualcomm products
Transient DOS due to improper authorization in Modem
network
low complexity
qualcomm CWE-287
7.5
2023-06-06 CVE-2023-21628 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
local
low complexity
qualcomm CWE-787
7.8
2023-06-06 CVE-2023-21656 Improper Input Validation vulnerability in Qualcomm products
Memory corruption in WLAN HOST while receiving an WMI event from firmware.
local
low complexity
qualcomm CWE-20
7.8
2023-05-02 CVE-2022-40504 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
network
low complexity
qualcomm CWE-617
7.5
2023-05-02 CVE-2023-21665 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory corruption in Graphics while importing a file.
local
low complexity
qualcomm CWE-704
7.8