Vulnerabilities > Qualcomm > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-02 | CVE-2023-43511 | Infinite Loop vulnerability in Qualcomm products Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | 7.5 |
| 2024-01-02 | CVE-2023-43512 | Out-of-bounds Read vulnerability in Qualcomm Qcn7606 Firmware Transient DOS while parsing GATT service data when the total amount of memory that is required by the multiple services is greater than the actual size of the services buffer. | 7.5 |
| 2024-01-02 | CVE-2023-43514 | Use After Free vulnerability in Qualcomm products Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP. | 7.8 |
| 2023-12-05 | CVE-2023-21634 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in Radio Interface Layer while sending an SMS or writing an SMS to SIM. | 7.8 |
| 2023-12-05 | CVE-2023-22383 | Out-of-bounds Write vulnerability in Qualcomm products Memory Corruption in camera while installing a fd for a particular DMA buffer. | 7.8 |
| 2023-12-05 | CVE-2023-22668 | Use After Free vulnerability in Qualcomm products Memory Corruption in Audio while invoking IOCTLs calls from the user-space. | 7.8 |
| 2023-12-05 | CVE-2023-28546 | Classic Buffer Overflow vulnerability in Qualcomm products Memory Corruption in SPS Application while exporting public key in sorter TA. | 7.8 |
| 2023-12-05 | CVE-2023-28550 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in MPP performance while accessing DSM watermark using external memory address. | 7.8 |
| 2023-12-05 | CVE-2023-28551 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments. | 7.8 |
| 2023-12-05 | CVE-2023-28579 | Classic Buffer Overflow vulnerability in Qualcomm products Memory Corruption in WLAN Host while deserializing the input PMK bytes without checking the input PMK length. | 7.8 |