Vulnerabilities > Qualcomm > Qcm6490 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2024-12-02 CVE-2024-33044 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
local
low complexity
qualcomm CWE-129
7.8
2024-12-02 CVE-2024-43050 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver.
local
low complexity
qualcomm CWE-787
7.8
2024-11-04 CVE-2024-38406 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption while handling IOCTL calls in JPEG Encoder driver.
local
high complexity
qualcomm CWE-367
7.0
2024-11-04 CVE-2024-38407 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver.
local
high complexity
qualcomm CWE-367
7.0
2024-11-04 CVE-2024-38409 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption while station LL statistic handling.
local
low complexity
qualcomm CWE-120
7.8
2024-11-04 CVE-2024-38410 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.
local
low complexity
qualcomm CWE-787
7.8
2024-11-04 CVE-2024-38415 Use After Free vulnerability in Qualcomm products
Memory corruption while handling session errors from firmware.
local
low complexity
qualcomm CWE-416
7.8
2024-11-04 CVE-2024-38419 Use After Free vulnerability in Qualcomm products
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.
local
low complexity
qualcomm CWE-416
7.8
2024-11-04 CVE-2024-38422 Unspecified vulnerability in Qualcomm products
Memory corruption while processing voice packet with arbitrary data received from ADSP.
local
low complexity
qualcomm
7.8
2024-11-04 CVE-2024-38423 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption while processing GPU page table switch.
local
low complexity
qualcomm CWE-120
7.8