Vulnerabilities > Qualcomm > Qcs405 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-10 | CVE-2022-33245 | Use After Free vulnerability in Qualcomm products Memory corruption in WLAN due to use after free | 7.8 |
| 2023-03-10 | CVE-2022-33257 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone. | 7.0 |
| 2023-03-10 | CVE-2022-33278 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity. | 7.8 |
| 2023-03-10 | CVE-2022-40530 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase. | 7.8 |
| 2023-03-10 | CVE-2022-40531 | Incorrect Type Conversion or Cast vulnerability in Qualcomm products Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. | 7.8 |
| 2023-02-12 | CVE-2022-25728 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in modem due to buffer over-read while processing response from DNS server | 7.5 |
| 2023-02-12 | CVE-2022-25732 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in modem due to buffer over read in dns client due to missing length check | 7.5 |
| 2023-02-12 | CVE-2022-25733 | NULL Pointer Dereference vulnerability in Qualcomm products Denial of service in modem due to null pointer dereference while processing DNS packets | 7.5 |
| 2023-02-12 | CVE-2022-25734 | Infinite Loop vulnerability in Qualcomm products Denial of service in modem due to missing null check while processing IP packets with padding | 7.5 |
| 2023-02-12 | CVE-2022-25735 | NULL Pointer Dereference vulnerability in Qualcomm products Denial of service in modem due to missing null check while processing TCP or UDP packets from server | 7.5 |