Vulnerabilities > Qualcomm > Qca9377 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-03 | CVE-2023-33029 | Use After Free vulnerability in Qualcomm products Memory corruption in DSP Service during a remote call from HLOS to DSP. | 7.8 |
| 2023-10-03 | CVE-2023-33035 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while invoking callback function of AFE from ADSP. | 7.8 |
| 2023-09-05 | CVE-2023-21662 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in Core Platform while printing the response buffer in log. | 7.8 |
| 2023-09-05 | CVE-2023-21664 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in Core Platform while printing the response buffer in log. | 7.8 |
| 2023-09-05 | CVE-2023-28559 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN FW while processing command parameters from untrusted WMI payload. | 7.8 |
| 2023-09-05 | CVE-2023-28560 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. | 7.8 |
| 2023-09-05 | CVE-2023-28564 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN HAL while passing command parameters through WMI interfaces. | 7.8 |
| 2023-09-05 | CVE-2023-28565 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN HAL while handling command streams through WMI interfaces. | 7.8 |
| 2023-09-05 | CVE-2023-33019 | Unspecified vulnerability in Qualcomm products Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE. | 7.5 |
| 2023-09-05 | CVE-2023-33020 | Unspecified vulnerability in Qualcomm products Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE. | 7.5 |