Vulnerabilities > Qualcomm > Qca6426 Firmware > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-05 | CVE-2023-33054 | Improper Authentication vulnerability in Qualcomm products Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data. | 9.1 |
| 2023-11-07 | CVE-2023-33045 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute. | 9.8 |
| 2023-11-07 | CVE-2023-22388 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in Multi-mode Call Processor while processing bit mask API. | 9.8 |
| 2023-10-03 | CVE-2023-33028 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN Firmware while doing a memory copy of pmk cache. | 9.8 |
| 2023-10-03 | CVE-2023-22385 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in Data Modem while making a MO call or MT VOLTE call. | 9.8 |
| 2023-09-05 | CVE-2023-28581 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE. | 9.8 |
| 2023-08-08 | CVE-2022-40510 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder. | 9.8 |
| 2023-07-04 | CVE-2023-21631 | Unspecified vulnerability in Qualcomm products Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network. | 9.8 |
| 2023-03-10 | CVE-2022-40537 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response. | 9.8 |
| 2023-03-10 | CVE-2022-40515 | Double Free vulnerability in Qualcomm products Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms. | 9.8 |