Vulnerabilities > Qualcomm > Mdm8207 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-11-07 CVE-2023-22388 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Multi-mode Call Processor while processing bit mask API.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-10-03 CVE-2023-22385 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-08-08 CVE-2022-40510 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-04-13 CVE-2022-33259 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received.
network
low complexity
qualcomm CWE-120
critical
 9.8
9.8
2023-04-13 CVE-2022-33211 Incorrect Calculation of Buffer Size vulnerability in Qualcomm products
memory corruption in modem due to improper check while calculating size of serialized CoAP message
network
low complexity
qualcomm CWE-131
critical
 9.8
9.8
2023-04-13 CVE-2022-25740 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-04-13 CVE-2022-25678 Out-of-bounds Write vulnerability in Qualcomm products
Memory correction in modem due to buffer overwrite during coap connection
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2022-11-15 CVE-2022-25727 Improper Validation of Specified Quantity in Input vulnerability in Qualcomm products
Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music
network
low complexity
qualcomm CWE-1284
critical
 9.8
9.8
2022-06-14 CVE-2021-30341 Out-of-bounds Write vulnerability in Qualcomm products
Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2021-11-12 CVE-2021-30284 Information Exposure vulnerability in Qualcomm products
Possible information exposure and denial of service due to NAS not dropping messages when integrity check fails in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
network
low complexity
qualcomm CWE-200
critical
 9.1
9.1