Vulnerabilities > Qualcomm > Qca4024 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-09 | CVE-2022-40517 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in core due to stack-based buffer overflow | 7.8 |
| 2023-01-09 | CVE-2022-40519 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer overread in Core | 5.5 |
| 2022-12-13 | CVE-2022-25677 | Use After Free vulnerability in Qualcomm products Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | 7.8 |
| 2022-12-13 | CVE-2022-33235 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. | 7.5 |
| 2022-12-13 | CVE-2022-33238 | Infinite Loop vulnerability in Qualcomm products Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. | 7.5 |
| 2022-11-15 | CVE-2022-25667 | Improper Authentication vulnerability in Qualcomm products Information disclosure in kernel due to improper handling of ICMP requests in Snapdragon Wired Infrastructure and Networking | 7.5 |
| 2022-11-15 | CVE-2022-25674 | Unspecified vulnerability in Qualcomm products Cryptographic issues in WLAN during the group key handshake of the WPA/WPA2 protocol in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music | 9.8 |
| 2022-11-15 | CVE-2022-25727 | Improper Validation of Specified Quantity in Input vulnerability in Qualcomm products Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music | 9.8 |
| 2022-11-15 | CVE-2022-25742 | Infinite Loop vulnerability in Qualcomm products Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music | 7.5 |
| 2022-11-15 | CVE-2022-33236 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS due to buffer over-read in WLAN firmware while parsing cipher suite info attributes. | 7.5 |