Vulnerabilities > Qualcomm > Qcn9072 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2022-12-13 CVE-2022-33238 Infinite Loop vulnerability in Qualcomm products
Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames.
network
low complexity
qualcomm CWE-835
7.5
2022-11-15 CVE-2022-25667 Improper Authentication vulnerability in Qualcomm products
Information disclosure in kernel due to improper handling of ICMP requests in Snapdragon Wired Infrastructure and Networking
network
low complexity
qualcomm CWE-287
7.5
2022-11-15 CVE-2022-33236 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS due to buffer over-read in WLAN firmware while parsing cipher suite info attributes.
network
low complexity
qualcomm CWE-125
7.5
2022-11-15 CVE-2022-33237 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold.
network
low complexity
qualcomm CWE-125
7.5
2022-11-15 CVE-2022-33239 Infinite Loop vulnerability in Qualcomm products
Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header.
network
low complexity
qualcomm CWE-835
7.5
2022-10-19 CVE-2022-25736 Out-of-bounds Read vulnerability in Qualcomm products
Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
network
low complexity
qualcomm CWE-125
7.5
2022-10-19 CVE-2022-25749 Out-of-bounds Read vulnerability in Qualcomm products
Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames.
network
low complexity
qualcomm CWE-125
7.5
2022-09-16 CVE-2022-25652 Improper Authentication vulnerability in Qualcomm products
Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking
local
low complexity
qualcomm CWE-287
7.8
2022-06-14 CVE-2021-30281 Unspecified vulnerability in Qualcomm products
Possible unauthorized access to secure space due to improper check of data allowed while flashing the no access control device configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
local
low complexity
qualcomm
7.8
2022-06-14 CVE-2021-35129 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
local
low complexity
qualcomm CWE-120
7.8