Vulnerabilities > Qualcomm > Qcs605 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-12-05 CVE-2023-33022 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption in HLOS while invoking IOCTL calls from user-space.
local
low complexity
qualcomm CWE-190
7.8
2023-12-05 CVE-2023-33054 Improper Authentication vulnerability in Qualcomm products
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
network
low complexity
qualcomm CWE-287
critical
9.1
2023-11-07 CVE-2023-33059 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Audio while processing the VOC packet data from ADSP.
local
low complexity
qualcomm CWE-787
7.8
2023-10-03 CVE-2023-33027 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware while parsing rsn ies.
network
low complexity
qualcomm CWE-125
7.5
2023-09-05 CVE-2023-21662 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption in Core Platform while printing the response buffer in log.
local
low complexity
qualcomm CWE-120
7.8
2023-09-05 CVE-2023-21664 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Core Platform while printing the response buffer in log.
local
low complexity
qualcomm CWE-787
7.8
2023-09-05 CVE-2023-28543 Out-of-bounds Read vulnerability in Qualcomm products
A malformed DLC can trigger Memory Corruption in SNPE library due to out of bounds read, such as by loading an untrusted model (e.g.
network
low complexity
qualcomm CWE-125
critical
9.8
2023-09-05 CVE-2023-28560 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.
local
low complexity
qualcomm CWE-787
7.8
2023-08-08 CVE-2022-40510 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
network
low complexity
qualcomm CWE-787
critical
9.8
2023-08-08 CVE-2023-21626 Improper Authentication vulnerability in Qualcomm products
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
local
low complexity
qualcomm CWE-287
7.1