Vulnerabilities > Qualcomm > Qrb5165M Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-02-11 CVE-2021-30324 Classic Buffer Overflow vulnerability in Qualcomm products
Possible out of bound write due to lack of boundary check for the maximum size of buffer when sending a DCI packet to remote process in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
local
low complexity
qualcomm CWE-120
6.7
2022-02-11 CVE-2021-30325 Improper Validation of Array Index vulnerability in Qualcomm products
Possible out of bound access of DCI resources due to lack of validation process and resource allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
local
low complexity
qualcomm CWE-129
6.7
2022-02-11 CVE-2021-35068 NULL Pointer Dereference vulnerability in Qualcomm products
Lack of null check while freeing the device information buffer in the Bluetooth HFP protocol can lead to a NULL pointer dereference in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
network
low complexity
qualcomm CWE-476
critical
9.8
2022-02-11 CVE-2021-35069 Integer Overflow or Wraparound vulnerability in Qualcomm products
Improper validation of data length received from DMA buffer can lead to memory corruption.
local
low complexity
qualcomm CWE-190
7.8
2022-02-11 CVE-2021-35077 Use After Free vulnerability in Qualcomm products
Possible use after free scenario in compute offloads to DSP while multiple calls spawn a dynamic process in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
local
low complexity
qualcomm CWE-416
7.8