Vulnerabilities > Qualcomm > Mdm9205 Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-04-13 | CVE-2022-25740 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface | 9.8 |
2023-04-13 | CVE-2022-25745 | Always-Incorrect Control Flow Implementation vulnerability in Qualcomm products Memory corruption in modem due to improper input validation while handling the incoming CoAP message | 9.8 |
2023-04-13 | CVE-2022-25747 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message | 7.5 |
2023-04-13 | CVE-2022-33211 | Incorrect Calculation of Buffer Size vulnerability in Qualcomm products memory corruption in modem due to improper check while calculating size of serialized CoAP message | 9.8 |
2023-04-13 | CVE-2022-33222 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer over-read while parsing DNS response packets in Modem. | 7.5 |
2023-04-13 | CVE-2022-33223 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding. | 7.5 |
2023-04-13 | CVE-2022-33228 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by-hop or destination option in header. | 7.5 |
2023-04-13 | CVE-2022-33231 | Double Free vulnerability in Qualcomm products Memory corruption due to double free in core while initializing the encryption key. | 7.8 |
2023-04-13 | CVE-2022-33259 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received. | 9.8 |
2023-04-13 | CVE-2022-33294 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message. | 7.5 |