Vulnerabilities > Qualcomm > Qca6574Au Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-06 | CVE-2024-49847 | Buffer Over-read vulnerability in Qualcomm products Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key data IE. | 7.5 |
| 2025-05-06 | CVE-2025-21453 | Use After Free vulnerability in Qualcomm products Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur. | 7.8 |
| 2025-05-06 | CVE-2025-21459 | Buffer Over-read vulnerability in Qualcomm products Transient DOS while parsing per STA profile in ML IE. | 7.5 |
| 2025-05-06 | CVE-2025-21460 | Improper Input Validation vulnerability in Qualcomm products Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed continuously. | 7.8 |
| 2025-05-06 | CVE-2025-21467 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while reading the FW response from the shared queue. | 7.8 |
| 2025-05-06 | CVE-2025-21468 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer. | 7.8 |
| 2025-03-03 | CVE-2024-43057 | Use After Free vulnerability in Qualcomm products Memory corruption while processing command in Glink linux. | 7.8 |
| 2025-03-03 | CVE-2024-43060 | Use of Out-of-range Pointer Offset vulnerability in Qualcomm products Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP. | 7.8 |
| 2025-03-03 | CVE-2024-43061 | Use After Free vulnerability in Qualcomm products Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive. | 7.8 |
| 2025-03-03 | CVE-2024-53012 | Improper Input Validation vulnerability in Qualcomm products Memory corruption may occur due to improper input validation in clock device. | 7.8 |