Vulnerabilities > Qualcomm > Qca6696 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-13 | CVE-2022-33231 | Double Free vulnerability in Qualcomm products Memory corruption due to double free in core while initializing the encryption key. | 7.8 |
| 2023-04-13 | CVE-2022-33269 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment. | 7.8 |
| 2023-04-13 | CVE-2022-33270 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message. | 5.9 |
| 2023-04-13 | CVE-2022-33282 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback. | 7.8 |
| 2023-04-13 | CVE-2022-33288 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information. | 8.8 |
| 2023-04-13 | CVE-2022-33289 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. | 6.8 |
| 2023-04-13 | CVE-2022-33296 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message. | 7.8 |
| 2023-04-13 | CVE-2022-33298 | Use After Free vulnerability in Qualcomm products Memory corruption due to use after free in Modem while modem initialization. | 7.8 |
| 2023-04-13 | CVE-2022-33301 | Incorrect Type Conversion or Cast vulnerability in Qualcomm products Memory corruption due to incorrect type conversion or cast in audio while using audio playback/capture when crafted address is sent from AGM IPC to AGM. | 7.8 |
| 2023-04-13 | CVE-2022-33302 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. | 7.8 |