Vulnerabilities > Qualcomm > Msm8909W Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-09-20 | CVE-2017-18301 | NULL Pointer Dereference vulnerability in Qualcomm products In Small Cell SoC and Snapdragon (Automobile, Mobile, Wear) in version FSM9055, FSM9955, MDM9607, MDM9640, MDM9650, MSM8909W, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDM630, SDM636, SDM660, SDX20, Snapdragon_High_Med_2016, providing the NULL argument of ICE regulator while processing create key IOCTL results in system restart. | 5.5 |
| 2018-09-20 | CVE-2017-18280 | Unspecified vulnerability in Qualcomm products In Snapdragon (Automobile, Mobile, Wear) in version MDM9607, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SDM429, SDM439, SDM632, Snapdragon_High_Med_2016, when a Trusted Application has opened the SPI/I2C interface to a particular device, it is possible for another Trusted Application to read the data on this open interface by calling the SPI/I2C read function. | 7.8 |
| 2018-07-06 | CVE-2018-5894 | Improper Validation of Array Index vulnerability in Qualcomm products Improper Validation of Array Index in Multimedia While parsing an mp4 file in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, an out-of-bounds access can occur. | 6.5 |
| 2018-07-06 | CVE-2018-5891 | Use After Free vulnerability in Qualcomm products While processing modem SSR after IMS is registered, the IMS data daemon is restarted but the ipc_dataHandle is no longer available. | 8.4 |
| 2018-07-06 | CVE-2018-5885 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products While loading dynamic fonts, a buffer overflow may occur if the number of segments in the font file is out of range in Snapdragon Mobile and Snapdragon Wear. | 9.8 |
| 2018-07-06 | CVE-2018-5882 | Out-of-bounds Read vulnerability in Qualcomm products While parsing a Flac file with a corrupted comment block, a buffer over-read can occur in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear. | 9.8 |
| 2018-07-06 | CVE-2018-5876 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products While parsing an mp4 file, a buffer overflow can occur in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear. | 8.8 |
| 2018-07-06 | CVE-2018-5875 | Integer Overflow or Wraparound vulnerability in Qualcomm products While parsing an mp4 file, an integer overflow leading to a buffer overflow can occur in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear. | 8.8 |
| 2018-07-06 | CVE-2018-5874 | Out-of-bounds Write vulnerability in Qualcomm products While parsing an mp4 file, a stack-based buffer overflow can occur in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear. | 8.8 |
| 2018-07-06 | CVE-2018-5838 | Improper Validation of Array Index vulnerability in Qualcomm products Improper Validation of Array Index In the adreno OpenGL driver in Snapdragon Automobile, Snapdragon Mobile and Snapdragon Wear, an out-of-bounds access can occur in SurfaceFlinger. | 7.8 |