Vulnerabilities > Qualcomm > Qca9377 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-02-12 CVE-2022-33233 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption due to configuration weakness in modem wile sending command to write protected files.
local
low complexity
qualcomm CWE-787
7.8
2023-02-12 CVE-2022-33243 Unspecified vulnerability in Qualcomm products
Memory corruption due to improper access control in Qualcomm IPC.
local
low complexity
qualcomm
7.8
2023-02-12 CVE-2022-33248 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http.
local
low complexity
qualcomm CWE-190
7.8
2023-02-12 CVE-2022-33271 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
network
low complexity
qualcomm CWE-125
7.5
2023-02-12 CVE-2022-33280 Access of Uninitialized Pointer vulnerability in Qualcomm products
Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet.
low complexity
qualcomm CWE-824
8.8
2023-02-12 CVE-2022-40512 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
network
low complexity
qualcomm CWE-125
7.5
2023-01-09 CVE-2022-25746 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping.
local
low complexity
qualcomm CWE-120
7.8
2023-01-09 CVE-2022-33266 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.
local
low complexity
qualcomm CWE-190
7.8
2023-01-09 CVE-2022-33290 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS in Bluetooth HOST due to null pointer dereference when a mismatched argument is passed.
network
low complexity
qualcomm CWE-476
7.5
2023-01-09 CVE-2022-33299 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data.
network
low complexity
qualcomm CWE-476
7.5