Vulnerabilities > Qualcomm > Msm8996Au Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-02 | CVE-2024-33043 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while handling PS event when Program Service name length offset value is set to 255. | 5.5 |
| 2024-09-02 | CVE-2024-33051 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. | 7.5 |
| 2024-09-02 | CVE-2024-33052 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when user provides data for FM HCI command control operations. | 7.8 |
| 2024-09-02 | CVE-2024-33060 | Use After Free vulnerability in Qualcomm products Memory corruption when two threads try to map and unmap a single node simultaneously. | 7.8 |
| 2024-07-01 | CVE-2024-21461 | Double Free vulnerability in Qualcomm products Memory corruption while performing finish HMAC operation when context is freed by keymaster. | 7.8 |
| 2024-07-01 | CVE-2024-23373 | Use After Free vulnerability in Qualcomm products Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. | 7.8 |
| 2024-06-03 | CVE-2023-43551 | Improper Authentication vulnerability in Qualcomm products Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. | 7.5 |
| 2024-06-03 | CVE-2023-43555 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in Video while parsing mp2 clip with invalid section length. | 7.5 |
| 2024-05-06 | CVE-2023-43528 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. | 5.5 |
| 2024-04-01 | CVE-2023-28547 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in SPS Application while requesting for public key in sorter TA. | 7.8 |