Vulnerabilities > Qualcomm > Mdm9205 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-13 | CVE-2022-33295 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length. | 7.5 |
| 2023-03-10 | CVE-2022-25694 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM | 7.8 |
| 2023-03-10 | CVE-2022-25705 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response | 7.8 |
| 2023-03-10 | CVE-2022-33213 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in modem due to buffer overflow while processing a PPP packet | 8.8 |
| 2023-03-10 | CVE-2022-33257 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone. | 7.0 |
| 2023-03-10 | CVE-2022-40531 | Incorrect Type Conversion or Cast vulnerability in Qualcomm products Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. | 7.8 |
| 2023-02-12 | CVE-2022-25728 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in modem due to buffer over-read while processing response from DNS server | 7.5 |
| 2023-02-12 | CVE-2022-25729 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in modem due to improper length check while copying into memory | 9.8 |
| 2023-02-12 | CVE-2022-25732 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in modem due to buffer over read in dns client due to missing length check | 7.5 |
| 2023-02-12 | CVE-2022-25733 | NULL Pointer Dereference vulnerability in Qualcomm products Denial of service in modem due to null pointer dereference while processing DNS packets | 7.5 |