Vulnerabilities > Qualcomm > Qca4024 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-15 | CVE-2022-25667 | Improper Authentication vulnerability in Qualcomm products Information disclosure in kernel due to improper handling of ICMP requests in Snapdragon Wired Infrastructure and Networking | 7.5 |
| 2022-11-15 | CVE-2022-25674 | Unspecified vulnerability in Qualcomm products Cryptographic issues in WLAN during the group key handshake of the WPA/WPA2 protocol in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music | 9.8 |
| 2022-11-15 | CVE-2022-25727 | Improper Validation of Specified Quantity in Input vulnerability in Qualcomm products Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music | 9.8 |
| 2022-11-15 | CVE-2022-25742 | Infinite Loop vulnerability in Qualcomm products Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music | 7.5 |
| 2022-11-15 | CVE-2022-33236 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS due to buffer over-read in WLAN firmware while parsing cipher suite info attributes. | 7.5 |
| 2022-11-15 | CVE-2022-33237 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. | 7.5 |
| 2022-11-15 | CVE-2022-33239 | Infinite Loop vulnerability in Qualcomm products Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. | 7.5 |
| 2022-10-19 | CVE-2022-25666 | Use After Free vulnerability in Qualcomm products Memory corruption due to use after free in service while trying to access maps by different threads in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | 6.7 |
| 2022-10-19 | CVE-2022-25718 | Unchecked Return Value vulnerability in Qualcomm products Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | 9.8 |
| 2022-10-19 | CVE-2022-25719 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | 9.1 |