Vulnerabilities > Qualcomm > Qca6174A Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-10-07 CVE-2024-23369 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
local
low complexity
qualcomm CWE-119
7.8
2024-10-07 CVE-2024-23374 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption is possible when an attempt is made from userspace or console to write some haptics effects pattern to the haptics debugfs file.
local
low complexity
qualcomm CWE-787
6.7
2024-10-07 CVE-2024-23376 Use After Free vulnerability in Qualcomm products
Memory corruption while sending the persist buffer command packet from the user-space to the kernel space through the IOCTL call.
local
low complexity
qualcomm CWE-416
6.7
2024-10-07 CVE-2024-43047 Use After Free vulnerability in Qualcomm products
Memory corruption while maintaining memory maps of HLOS memory.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-33045 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33050 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33051 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33060 Use After Free vulnerability in Qualcomm products
Memory corruption when two threads try to map and unmap a single node simultaneously.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-38402 Use After Free vulnerability in Qualcomm products
Memory corruption while processing IOCTL call for getting group info.
local
low complexity
qualcomm CWE-416
7.8
2024-07-01 CVE-2024-21461 Double Free vulnerability in Qualcomm products
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
local
low complexity
qualcomm CWE-415
7.8