Vulnerabilities > Qualcomm > Qcm6490 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-04 | CVE-2024-38405 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while processing the CU information from RNR IE. | 6.5 |
| 2024-11-04 | CVE-2024-38406 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption while handling IOCTL calls in JPEG Encoder driver. | 7.0 |
| 2024-11-04 | CVE-2024-38407 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver. | 7.0 |
| 2024-11-04 | CVE-2024-38408 | Unspecified vulnerability in Qualcomm products Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. | 9.1 |
| 2024-11-04 | CVE-2024-38409 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while station LL statistic handling. | 7.8 |
| 2024-11-04 | CVE-2024-38410 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice. | 7.8 |
| 2024-11-04 | CVE-2024-38415 | Use After Free vulnerability in Qualcomm products Memory corruption while handling session errors from firmware. | 7.8 |
| 2024-11-04 | CVE-2024-38419 | Use After Free vulnerability in Qualcomm products Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node. | 7.8 |
| 2024-11-04 | CVE-2024-38422 | Unspecified vulnerability in Qualcomm products Memory corruption while processing voice packet with arbitrary data received from ADSP. | 7.8 |
| 2024-11-04 | CVE-2024-38423 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while processing GPU page table switch. | 7.8 |