Vulnerabilities > Qualcomm > Qca6421 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-06-06 CVE-2022-40533 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.
local
low complexity
qualcomm CWE-119
5.5
2023-05-02 CVE-2022-33273 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.
local
low complexity
qualcomm CWE-125
5.5
2023-04-13 CVE-2022-33289 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
low complexity
qualcomm CWE-129
6.8
2023-01-09 CVE-2022-25725 Release of Invalid Pointer or Reference vulnerability in Qualcomm products
Denial of service in MODEM due to improper pointer handling
local
low complexity
qualcomm CWE-763
5.5
2023-01-09 CVE-2022-33252 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.
local
low complexity
qualcomm CWE-125
5.5
2023-01-09 CVE-2022-33253 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.
local
low complexity
qualcomm CWE-125
5.5
2023-01-09 CVE-2022-33255 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device.
low complexity
qualcomm CWE-125
6.5
2023-01-09 CVE-2022-33283 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.
low complexity
qualcomm CWE-125
6.5
2023-01-09 CVE-2022-33284 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.
low complexity
qualcomm CWE-125
6.5
2023-01-09 CVE-2022-33285 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
low complexity
qualcomm CWE-125
6.5