Vulnerabilities > Qualcomm > Qts110 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-06-06 CVE-2022-40507 Double Free vulnerability in Qualcomm products
Memory corruption due to double free in Core while mapping HLOS address to the list.
local
low complexity
qualcomm CWE-415
7.8
2023-06-06 CVE-2022-40521 Improper Authentication vulnerability in Qualcomm products
Transient DOS due to improper authorization in Modem
network
low complexity
qualcomm CWE-287
7.5
2023-05-02 CVE-2022-33304 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet.
network
low complexity
qualcomm CWE-476
7.5
2023-05-02 CVE-2022-40505 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in Modem while parsing DNS hostname.
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33258 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in modem while reading configuration parameters.
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-25678 Out-of-bounds Write vulnerability in Qualcomm products
Memory correction in modem due to buffer overwrite during coap connection
network
low complexity
qualcomm CWE-787
critical
9.8
2023-04-13 CVE-2022-25726 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-25730 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem due to improper check of IP type while processing DNS server query
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-25731 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem due to buffer over-read while processing packets from DNS server
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-25737 Use of Uninitialized Resource vulnerability in Qualcomm products
Information disclosure in modem due to missing NULL check while reading packets received from local network
network
low complexity
qualcomm CWE-908
7.5