Vulnerabilities > Qualcomm > Qca6584 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-13 | CVE-2022-33302 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. | 7.8 |
| 2023-04-13 | CVE-2022-40532 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. | 7.8 |
| 2023-03-10 | CVE-2022-25655 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload. | 7.8 |
| 2023-03-10 | CVE-2022-25694 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM | 7.8 |
| 2023-03-10 | CVE-2022-25705 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response | 7.8 |
| 2023-03-10 | CVE-2022-33213 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in modem due to buffer overflow while processing a PPP packet | 8.8 |
| 2023-02-12 | CVE-2022-33233 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to configuration weakness in modem wile sending command to write protected files. | 7.8 |
| 2023-02-12 | CVE-2022-40512 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. | 7.5 |
| 2023-01-09 | CVE-2022-33290 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS in Bluetooth HOST due to null pointer dereference when a mismatched argument is passed. | 7.5 |
| 2023-01-09 | CVE-2022-33299 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data. | 7.5 |