Vulnerabilities > Qualcomm > Mdm9250 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-05 | CVE-2023-28565 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN HAL while handling command streams through WMI interfaces. | 7.8 |
| 2023-09-05 | CVE-2023-33019 | Unspecified vulnerability in Qualcomm products Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE. | 7.5 |
| 2023-09-05 | CVE-2023-33020 | Unspecified vulnerability in Qualcomm products Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE. | 7.5 |
| 2023-08-08 | CVE-2023-21625 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in Network Services due to buffer over-read while the device receives DNS response. | 7.5 |
| 2023-07-04 | CVE-2023-28541 | Out-of-bounds Read vulnerability in Qualcomm products Memory Corruption in Data Modem while processing DMA buffer release event about CFR data. | 7.8 |
| 2023-07-04 | CVE-2023-28542 | Out-of-bounds Read vulnerability in Qualcomm products Memory Corruption in WLAN HOST while fetching TX status information. | 7.8 |
| 2023-06-06 | CVE-2022-33264 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. | 7.8 |
| 2023-06-06 | CVE-2022-40507 | Double Free vulnerability in Qualcomm products Memory corruption due to double free in Core while mapping HLOS address to the list. | 7.8 |
| 2023-06-06 | CVE-2022-40521 | Improper Authentication vulnerability in Qualcomm products Transient DOS due to improper authorization in Modem | 7.5 |
| 2023-06-06 | CVE-2023-21628 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command. | 7.8 |