Vulnerabilities > Qualcomm > Qca4010 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-13 | CVE-2022-33291 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length. | 7.5 |
| 2023-03-10 | CVE-2022-25655 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. | 7.8 |
| 2023-02-12 | CVE-2022-25733 | NULL Pointer Dereference vulnerability in Qualcomm products Denial of service in modem due to null pointer dereference while processing DNS packets | 7.5 |
| 2023-02-12 | CVE-2022-25734 | Infinite Loop vulnerability in Qualcomm products Denial of service in modem due to missing null check while processing IP packets with padding | 7.5 |
| 2023-02-12 | CVE-2022-25738 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in modem due to buffer over-red while performing checksum of packet received | 7.5 |
| 2023-02-12 | CVE-2022-33229 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer over-read in Modem while using static array to process IPv4 packets. | 7.5 |
| 2022-11-15 | CVE-2022-25742 | Infinite Loop vulnerability in Qualcomm products Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music | 7.5 |
| 2021-10-20 | CVE-2021-30288 | Out-of-bounds Write vulnerability in Qualcomm products Possible stack overflow due to improper length check of TLV while copying the TLV to a local stack variable in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking | 7.8 |
| 2021-02-22 | CVE-2020-11269 | Integer Overflow or Wraparound vulnerability in Qualcomm products Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | 8.8 |
| 2020-04-16 | CVE-2019-14135 | Classic Buffer Overflow vulnerability in Qualcomm products Possible integer overflow to buffer overflow in WLAN while parsing nonstandard NAN IE messages. | 7.8 |