Vulnerabilities > Qualcomm > Csrb31024 Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-13 | CVE-2022-33289 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. | 6.8 |
| 2023-01-09 | CVE-2022-25725 | Release of Invalid Pointer or Reference vulnerability in Qualcomm products Denial of service in MODEM due to improper pointer handling | 5.5 |
| 2023-01-09 | CVE-2022-33252 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame. | 5.5 |
| 2023-01-09 | CVE-2022-33253 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames. | 5.5 |
| 2023-01-09 | CVE-2022-33285 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames. | 6.5 |
| 2023-01-09 | CVE-2022-33286 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames. | 6.5 |
| 2023-01-09 | CVE-2022-40518 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer overread in Core | 5.5 |
| 2023-01-09 | CVE-2022-40519 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer overread in Core | 5.5 |
| 2022-10-19 | CVE-2022-22078 | Integer Overflow or Wraparound vulnerability in Qualcomm products Denial of service in BOOT when partition size for a particular partition is requested due to integer overflow when blocks are calculated in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables | 4.6 |
| 2022-09-02 | CVE-2021-35097 | Improper Verification of Cryptographic Signature vulnerability in Qualcomm products Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | 6.8 |