Vulnerabilities > Qualcomm > High

DATE CVE VULNERABILITY TITLE RISK
2024-01-02 CVE-2023-43511 Infinite Loop vulnerability in Qualcomm products
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
network
low complexity
qualcomm CWE-835
7.5
2024-01-02 CVE-2023-43512 Out-of-bounds Read vulnerability in Qualcomm Qcn7606 Firmware
Transient DOS while parsing GATT service data when the total amount of memory that is required by the multiple services is greater than the actual size of the services buffer.
network
low complexity
qualcomm CWE-125
7.5
2024-01-02 CVE-2023-43514 Use After Free vulnerability in Qualcomm products
Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.
local
low complexity
qualcomm CWE-416
7.8
2023-12-05 CVE-2023-21634 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Radio Interface Layer while sending an SMS or writing an SMS to SIM.
local
low complexity
qualcomm CWE-787
7.8
2023-12-05 CVE-2023-22383 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in camera while installing a fd for a particular DMA buffer.
local
low complexity
qualcomm CWE-787
7.8
2023-12-05 CVE-2023-22668 Use After Free vulnerability in Qualcomm products
Memory Corruption in Audio while invoking IOCTLs calls from the user-space.
local
low complexity
qualcomm CWE-416
7.8
2023-12-05 CVE-2023-28546 Classic Buffer Overflow vulnerability in Qualcomm products
Memory Corruption in SPS Application while exporting public key in sorter TA.
local
low complexity
qualcomm CWE-120
7.8
2023-12-05 CVE-2023-28550 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in MPP performance while accessing DSM watermark using external memory address.
local
low complexity
qualcomm CWE-787
7.8
2023-12-05 CVE-2023-28551 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.
local
low complexity
qualcomm CWE-787
7.8
2023-12-05 CVE-2023-28579 Classic Buffer Overflow vulnerability in Qualcomm products
Memory Corruption in WLAN Host while deserializing the input PMK bytes without checking the input PMK length.
local
low complexity
qualcomm CWE-120
7.8