Vulnerabilities > Qualcomm > Qam8295P Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-03 | CVE-2024-43051 | Improper Authorization vulnerability in Qualcomm products Information disclosure while deriving keys for a session for any Widevine use case. | 5.5 |
| 2025-03-03 | CVE-2024-43056 | Buffer Over-read vulnerability in Qualcomm products Transient DOS during hypervisor virtual I/O operation in a virtual machine. | 6.5 |
| 2025-02-03 | CVE-2024-38414 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure while processing information on firmware image during core initialization. | 5.5 |
| 2025-02-03 | CVE-2024-38416 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure during audio playback. | 5.5 |
| 2025-02-03 | CVE-2024-38417 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure while processing IO control commands. | 5.5 |
| 2025-01-06 | CVE-2024-23366 | Out-of-bounds Read vulnerability in Qualcomm products Information Disclosure while invoking the mailbox write API when message received from user is larger than mailbox size. | 5.5 |
| 2025-01-06 | CVE-2024-33067 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver. | 5.5 |
| 2025-01-06 | CVE-2024-43063 | Out-of-bounds Read vulnerability in Qualcomm products information disclosure while invoking the mailbox read API. | 5.5 |
| 2025-01-06 | CVE-2024-43064 | Allocation of Resources Without Limits or Throttling vulnerability in Qualcomm products Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU. | 4.7 |
| 2025-01-06 | CVE-2024-45559 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend. | 5.5 |