Vulnerabilities > Qualcomm > Mdm9205 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-21625 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in Network Services due to buffer over-read while the device receives DNS response.
network
low complexity
qualcomm CWE-125
7.5
2023-08-08 CVE-2023-21626 Improper Authentication vulnerability in Qualcomm products
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
local
low complexity
qualcomm CWE-287
7.1
2023-08-08 CVE-2023-21651 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
local
low complexity
qualcomm CWE-704
7.8
2023-04-13 CVE-2022-25678 Out-of-bounds Write vulnerability in Qualcomm products
Memory correction in modem due to buffer overwrite during coap connection
network
low complexity
qualcomm CWE-787
critical
9.8
2023-04-13 CVE-2022-25726 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-25730 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem due to improper check of IP type while processing DNS server query
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-25731 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem due to buffer over-read while processing packets from DNS server
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-25737 Use of Uninitialized Resource vulnerability in Qualcomm products
Information disclosure in modem due to missing NULL check while reading packets received from local network
network
low complexity
qualcomm CWE-908
7.5
2023-04-13 CVE-2022-25739 NULL Pointer Dereference vulnerability in Qualcomm products
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call
network
low complexity
qualcomm CWE-476
7.5
2023-04-13 CVE-2022-25740 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface
network
low complexity
qualcomm CWE-787
critical
9.8