Vulnerabilities > Qualcomm > Mdm9650 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-10-03 CVE-2023-33035 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption while invoking callback function of AFE from ADSP.
local
low complexity
qualcomm CWE-120
7.8
2023-09-05 CVE-2023-28564 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.
local
low complexity
qualcomm CWE-787
7.8
2023-09-05 CVE-2023-28565 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while handling command streams through WMI interfaces.
local
low complexity
qualcomm CWE-787
7.8
2023-09-05 CVE-2023-33019 Unspecified vulnerability in Qualcomm products
Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.
network
low complexity
qualcomm
7.5
2023-09-05 CVE-2023-33020 Unspecified vulnerability in Qualcomm products
Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.
network
low complexity
qualcomm
7.5
2023-09-05 CVE-2023-33021 Use After Free vulnerability in Qualcomm products
Memory corruption in Graphics while processing user packets for command submission.
local
low complexity
qualcomm CWE-416
7.8
2023-08-08 CVE-2022-40510 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
network
low complexity
qualcomm CWE-787
critical
9.8
2023-08-08 CVE-2023-21625 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in Network Services due to buffer over-read while the device receives DNS response.
network
low complexity
qualcomm CWE-125
7.5
2023-08-08 CVE-2023-21649 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN while running doDriverCmd for an unspecific command.
local
low complexity
qualcomm CWE-787
7.8
2023-07-04 CVE-2023-21629 Double Free vulnerability in Qualcomm products
Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.
low complexity
qualcomm CWE-415
6.8