Vulnerabilities > Qualcomm > Qcm4490 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-09-02 CVE-2024-33060 Use After Free vulnerability in Qualcomm products
Memory corruption when two threads try to map and unmap a single node simultaneously.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-38402 Use After Free vulnerability in Qualcomm products
Memory corruption while processing IOCTL call for getting group info.
local
low complexity
qualcomm CWE-416
7.8
2024-08-05 CVE-2024-33014 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing ESP IE from beacon/probe response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33015 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33023 Use After Free vulnerability in Qualcomm products
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
local
low complexity
qualcomm CWE-416
7.8
2024-08-05 CVE-2024-33034 Use After Free vulnerability in Qualcomm products
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
local
low complexity
qualcomm CWE-416
7.8
2024-07-01 CVE-2024-21461 Double Free vulnerability in Qualcomm products
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
local
low complexity
qualcomm CWE-415
7.8
2024-07-01 CVE-2024-21462 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while loading the TA ELF file.
local
low complexity
qualcomm CWE-125
5.5
2024-07-01 CVE-2024-21465 Out-of-bounds Read vulnerability in Qualcomm products
Memory corruption while processing key blob passed by the user.
local
low complexity
qualcomm CWE-125
7.8
2024-07-01 CVE-2024-21469 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
local
low complexity
qualcomm CWE-787
7.8