Vulnerabilities > Qualcomm > Fastconnect 6900 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-05 CVE-2023-28551 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
local
low complexity
qualcomm CWE-787
7.8
2023-12-05 CVE-2023-28579 Classic Buffer Overflow vulnerability in Qualcomm products
Memory Corruption in WLAN Host while deserializing the input PMK bytes without checking the input PMK length.
local
low complexity
qualcomm CWE-120
7.8
2023-12-05 CVE-2023-28580 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN Host while setting the PMK length in PMK length in internal cache.
local
low complexity
qualcomm CWE-787
7.8
2023-12-05 CVE-2023-28585 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption while loading an ELF segment in TEE Kernel.
local
low complexity
qualcomm CWE-119
8.8
2023-12-05 CVE-2023-28587 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
local
low complexity
qualcomm CWE-787
7.8
2023-12-05 CVE-2023-28588 Integer Overflow or Wraparound vulnerability in Qualcomm products
Transient DOS in Bluetooth Host while rfc slot allocation.
network
low complexity
qualcomm CWE-190
7.5
2023-12-05 CVE-2023-33088 NULL Pointer Dereference vulnerability in Qualcomm products
Memory corruption when processing cmd parameters while parsing vdev.
local
low complexity
qualcomm CWE-476
7.8
2023-12-05 CVE-2023-33089 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS when processing a NULL buffer while parsing WLAN vdev.
network
low complexity
qualcomm CWE-476
7.5
2023-12-05 CVE-2023-33092 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption while processing pin reply in Bluetooth, when pin code received from APP layer is greater than expected size.
local
low complexity
qualcomm CWE-119
7.8
2023-12-05 CVE-2023-33097 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware while processing a FTMR frame.
network
low complexity
qualcomm CWE-125
7.5