Vulnerabilities > Qualcomm > Qca7500 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-07-04 CVE-2023-28541 Out-of-bounds Read vulnerability in Qualcomm products
Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
local
low complexity
qualcomm CWE-125
7.8
2023-06-06 CVE-2023-21628 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
local
low complexity
qualcomm CWE-787
7.8
2023-03-10 CVE-2022-25655 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption in WLAN HAL while arbitrary value is passed in WMI UTF command payload.
local
low complexity
qualcomm CWE-120
7.8
2023-02-12 CVE-2022-33243 Unspecified vulnerability in Qualcomm products
Memory corruption due to improper access control in Qualcomm IPC.
local
low complexity
qualcomm
7.8
2023-02-12 CVE-2022-33279 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length.
network
low complexity
qualcomm CWE-787
critical
9.8
2023-01-09 CVE-2022-25722 Use After Free vulnerability in Qualcomm products
Information exposure in DSP services due to improper handling of freeing memory
local
low complexity
qualcomm CWE-416
5.5
2023-01-09 CVE-2022-33265 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption due to information exposure in Powerline Communication Firmware while sending different MMEs from a single, unassociated device.
network
low complexity
qualcomm CWE-787
critical
9.8
2022-12-13 CVE-2022-25677 Use After Free vulnerability in Qualcomm products
Memory corruption in diag due to use after free while processing dci packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
local
low complexity
qualcomm CWE-416
7.8
2022-12-13 CVE-2022-33238 Infinite Loop vulnerability in Qualcomm products
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames.
network
low complexity
qualcomm CWE-835
7.5
2022-11-15 CVE-2022-25667 Improper Authentication vulnerability in Qualcomm products
Information disclosure in kernel due to improper handling of ICMP requests in Snapdragon Wired Infrastructure and Networking
network
low complexity
qualcomm CWE-287
7.5