Vulnerabilities > Qualcomm > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-11-07 CVE-2023-33045 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-10-03 CVE-2023-22385 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Data Modem while making a MO call or MT VOLTE call.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-10-03 CVE-2023-24855 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Modem while processing security related configuration before AS Security Exchange.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-10-03 CVE-2023-33028 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-09-05 CVE-2023-28543 Out-of-bounds Read vulnerability in Qualcomm products
A malformed DLC can trigger Memory Corruption in SNPE library due to out of bounds read, such as by loading an untrusted model (e.g.
network
low complexity
qualcomm CWE-125
critical
 9.8
9.8
2023-09-05 CVE-2023-28562 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while handling payloads from remote ESL.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-09-05 CVE-2023-28581 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-08-08 CVE-2022-40510 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-08-08 CVE-2023-28561 Out-of-bounds Write vulnerability in Qualcomm Qcn7606 Firmware
Memory corruption in QESL while processing payload from external ESL device to firmware.
network
low complexity
qualcomm CWE-787
critical
 9.8
9.8
2023-07-04 CVE-2023-21631 Unspecified vulnerability in Qualcomm products
Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.
network
low complexity
qualcomm
critical
 9.8
9.8