Vulnerabilities > Qualcomm > Qcm8550 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2024-08-05 CVE-2024-33018 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33019 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the received TID-to-link mapping action frame.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33020 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while processing TID-to-link mapping IE elements.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33021 Use of Uninitialized Resource vulnerability in Qualcomm products
Memory corruption while processing IOCTL call to set metainfo.
local
low complexity
qualcomm CWE-908
7.8
2024-08-05 CVE-2024-33022 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption while allocating memory in HGSL driver.
local
low complexity
qualcomm CWE-190
7.8
2024-08-05 CVE-2024-33023 Use After Free vulnerability in Qualcomm products
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
local
low complexity
qualcomm CWE-416
7.8
2024-08-05 CVE-2024-33024 Integer Overflow or Wraparound vulnerability in Qualcomm products
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
network
low complexity
qualcomm CWE-190
7.5
2024-08-05 CVE-2024-33025 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33026 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33028 Use After Free vulnerability in Qualcomm products
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
local
low complexity
qualcomm CWE-416
7.8