Vulnerabilities > Qualcomm > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-13 | CVE-2022-25740 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface | 9.8 |
| 2023-04-13 | CVE-2022-25745 | Always-Incorrect Control Flow Implementation vulnerability in Qualcomm products Memory corruption in modem due to improper input validation while handling the incoming CoAP message | 9.8 |
| 2023-04-13 | CVE-2022-33211 | Incorrect Calculation of Buffer Size vulnerability in Qualcomm products memory corruption in modem due to improper check while calculating size of serialized CoAP message | 9.8 |
| 2023-04-13 | CVE-2022-33259 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input in modem while decoding raw SMS received. | 9.8 |
| 2023-03-10 | CVE-2022-33256 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption due to improper validation of array index in Multi-mode call processor. | 9.8 |
| 2023-03-10 | CVE-2022-40515 | Double Free vulnerability in Qualcomm products Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms. | 9.8 |
| 2023-03-10 | CVE-2022-40537 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response. | 9.8 |
| 2023-02-12 | CVE-2022-25729 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in modem due to improper length check while copying into memory | 9.8 |
| 2023-02-12 | CVE-2022-33279 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length. | 9.8 |
| 2023-02-12 | CVE-2022-40514 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. | 9.8 |