Vulnerabilities > Qualcomm > Qcm4290 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-07 | CVE-2023-24852 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in Core due to secure memory access by user while loading modem image. | 7.8 |
| 2023-11-07 | CVE-2023-28545 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in TZ Secure OS while loading an app ELF. | 7.8 |
| 2023-11-07 | CVE-2023-28556 | Unspecified vulnerability in Qualcomm products Cryptographic issue in HLOS during key management. | 7.8 |
| 2023-11-07 | CVE-2023-33055 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in Audio while invoking callback function in driver from ADSP. | 7.8 |
| 2023-11-07 | CVE-2023-33059 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in Audio while processing the VOC packet data from ADSP. | 7.8 |
| 2023-10-03 | CVE-2023-24847 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS in Modem while allocating DSM items. | 7.5 |
| 2023-10-03 | CVE-2023-24848 | Unspecified vulnerability in Qualcomm products Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. | 7.5 |
| 2023-10-03 | CVE-2023-24849 | Unspecified vulnerability in Qualcomm products Information Disclosure in data Modem while parsing an FMTP line in an SDP message. | 7.5 |
| 2023-10-03 | CVE-2023-24850 | Improper Validation of Array Index vulnerability in Qualcomm products Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application. | 7.8 |
| 2023-10-03 | CVE-2023-28540 | Improper Authentication vulnerability in Qualcomm products Cryptographic issue in Data Modem due to improper authentication during TLS handshake. | 7.5 |