Vulnerabilities > Qualcomm > Qca6574A Firmware > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-01-09 | CVE-2022-22088 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote | 8.8 |
2023-01-09 | CVE-2022-25717 | Double Free vulnerability in Qualcomm products Memory corruption in display due to double free while allocating frame buffer memory | 7.8 |
2023-01-09 | CVE-2022-25721 | Type Confusion vulnerability in Qualcomm products Memory corruption in video driver due to type confusion error during video playback | 7.8 |
2023-01-09 | CVE-2022-25746 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping. | 7.8 |
2023-01-09 | CVE-2022-33218 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in Automotive due to improper input validation. | 7.8 |
2023-01-09 | CVE-2022-33219 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in Automotive due to integer overflow to buffer overflow while registering a new listener with shared buffer. | 7.8 |
2023-01-09 | CVE-2022-33266 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content. | 7.8 |
2023-01-09 | CVE-2022-33276 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command. | 7.8 |
2023-01-09 | CVE-2022-33290 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS in Bluetooth HOST due to null pointer dereference when a mismatched argument is passed. | 7.5 |
2023-01-09 | CVE-2022-33299 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data. | 7.5 |