Vulnerabilities > Qualcomm > Mdm9207 Firmware > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-08 | CVE-2022-40510 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. | 9.8 |
| 2023-04-13 | CVE-2022-33259 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received. | 9.8 |
| 2023-04-13 | CVE-2022-33211 | Incorrect Calculation of Buffer Size vulnerability in Qualcomm products memory corruption in modem due to improper check while calculating size of serialized CoAP message | 9.8 |
| 2023-04-13 | CVE-2022-25740 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface | 9.8 |
| 2023-04-13 | CVE-2022-25678 | Out-of-bounds Write vulnerability in Qualcomm products Memory correction in modem due to buffer overwrite during coap connection | 9.8 |
| 2022-11-15 | CVE-2022-25727 | Improper Validation of Specified Quantity in Input vulnerability in Qualcomm products Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music | 9.8 |
| 2022-06-14 | CVE-2021-30341 | Out-of-bounds Write vulnerability in Qualcomm products Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables | 9.8 |
| 2021-11-12 | CVE-2021-30284 | Information Exposure vulnerability in Qualcomm products Possible information exposure and denial of service due to NAS not dropping messages when integrity check fails in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | 9.1 |
| 2021-11-12 | CVE-2021-1975 | Out-of-bounds Write vulnerability in Qualcomm products Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables | 9.8 |
| 2021-09-08 | CVE-2021-1920 | Integer Underflow (Wrap or Wraparound) vulnerability in Qualcomm products Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables | 9.8 |