Vulnerabilities > Qualcomm > Qca9367 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-05 | CVE-2023-28551 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments. | 7.8 |
| 2023-12-05 | CVE-2023-33017 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. | 7.8 |
| 2023-12-05 | CVE-2023-33018 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption while using the UIM diag command to get the operators name. | 7.8 |
| 2023-12-05 | CVE-2023-33080 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. | 7.5 |
| 2023-11-07 | CVE-2023-33059 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in Audio while processing the VOC packet data from ADSP. | 7.8 |
| 2023-10-03 | CVE-2023-24848 | Unspecified vulnerability in Qualcomm products Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. | 7.5 |
| 2023-10-03 | CVE-2023-24849 | Unspecified vulnerability in Qualcomm products Information Disclosure in data Modem while parsing an FMTP line in an SDP message. | 7.5 |
| 2023-09-05 | CVE-2023-28565 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN HAL while handling command streams through WMI interfaces. | 7.8 |
| 2023-09-05 | CVE-2023-33019 | Unspecified vulnerability in Qualcomm products Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE. | 7.5 |
| 2023-09-05 | CVE-2023-33020 | Unspecified vulnerability in Qualcomm products Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE. | 7.5 |