Vulnerabilities > Qualcomm > Mdm9207 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-04-13 CVE-2022-25747 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33211 Incorrect Calculation of Buffer Size vulnerability in Qualcomm products
memory corruption in modem due to improper check while calculating size of serialized CoAP message
network
low complexity
qualcomm CWE-131
critical
9.8
2023-04-13 CVE-2022-33222 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read while parsing DNS response packets in Modem.
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33223 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding.
network
low complexity
qualcomm CWE-476
7.5
2023-04-13 CVE-2022-33228 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by-hop or destination option in header.
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33259 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received.
network
low complexity
qualcomm CWE-120
critical
9.8
2023-04-13 CVE-2022-33294 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message.
network
low complexity
qualcomm CWE-476
7.5
2023-04-13 CVE-2022-33295 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length.
network
low complexity
qualcomm CWE-125
7.5
2023-03-10 CVE-2022-25694 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM
local
low complexity
qualcomm CWE-119
7.8
2023-03-10 CVE-2022-25705 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
local
low complexity
qualcomm CWE-190
7.8