Vulnerabilities > Qualcomm > Msm8996Au Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-02-12 CVE-2022-33246 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption in Audio due to use of out-of-range pointer offset while Initiating a voice call session from user space with invalid session id.
local
low complexity
qualcomm CWE-119
7.8
2023-02-12 CVE-2022-33271 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
network
low complexity
qualcomm CWE-125
7.5
2023-02-12 CVE-2022-40512 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
network
low complexity
qualcomm CWE-125
7.5
2023-01-09 CVE-2022-22088 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote
low complexity
qualcomm CWE-787
8.8
2023-01-09 CVE-2022-25717 Double Free vulnerability in Qualcomm products
Memory corruption in display due to double free while allocating frame buffer memory
local
low complexity
qualcomm CWE-415
7.8
2023-01-09 CVE-2022-33218 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Automotive due to improper input validation.
local
low complexity
qualcomm CWE-787
7.8
2023-01-09 CVE-2022-33219 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption in Automotive due to integer overflow to buffer overflow while registering a new listener with shared buffer.
local
low complexity
qualcomm CWE-190
7.8
2023-01-09 CVE-2022-33266 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.
local
low complexity
qualcomm CWE-190
7.8
2023-01-09 CVE-2022-33290 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS in Bluetooth HOST due to null pointer dereference when a mismatched argument is passed.
network
low complexity
qualcomm CWE-476
7.5
2023-01-09 CVE-2022-33299 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data.
network
low complexity
qualcomm CWE-476
7.5