Vulnerabilities > Qualcomm > Msm8909W Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-05 | CVE-2023-28551 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments. | 7.8 |
| 2023-12-05 | CVE-2023-33018 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption while using the UIM diag command to get the operators name. | 7.8 |
| 2023-12-05 | CVE-2023-33107 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call. | 7.8 |
| 2023-11-07 | CVE-2023-22388 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in Multi-mode Call Processor while processing bit mask API. | 9.8 |
| 2023-11-07 | CVE-2023-33059 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in Audio while processing the VOC packet data from ADSP. | 7.8 |
| 2023-10-03 | CVE-2023-22385 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in Data Modem while making a MO call or MT VOLTE call. | 9.8 |
| 2023-10-03 | CVE-2023-24848 | Unspecified vulnerability in Qualcomm products Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. | 7.5 |
| 2023-10-03 | CVE-2023-24849 | Unspecified vulnerability in Qualcomm products Information Disclosure in data Modem while parsing an FMTP line in an SDP message. | 7.5 |
| 2023-09-05 | CVE-2023-33019 | Unspecified vulnerability in Qualcomm products Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE. | 7.5 |
| 2023-09-05 | CVE-2023-33020 | Unspecified vulnerability in Qualcomm products Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE. | 7.5 |