Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2023-01-09	CVE-2022-33286	Out-of-bounds Read vulnerability in Qualcomm products Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames. low complexity qualcomm CWE-125	6.5
2023-01-09	CVE-2022-40518	Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer overread in Core local low complexity qualcomm CWE-125	5.5
2023-01-09	CVE-2022-40519	Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer overread in Core local low complexity qualcomm CWE-125	5.5
2022-11-15	CVE-2022-25676	Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in video due to buffer over-read while parsing avi files in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables local low complexity qualcomm CWE-125	5.5
2022-10-19	CVE-2022-22078	Integer Overflow or Wraparound vulnerability in Qualcomm products Denial of service in BOOT when partition size for a particular partition is requested due to integer overflow when blocks are calculated in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables low complexity qualcomm CWE-190	4.6
2022-10-19	CVE-2022-25664	Incomplete Cleanup vulnerability in Qualcomm products Information disclosure due to exposure of information while GPU reads the data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables local low complexity qualcomm CWE-459	5.5
2022-10-19	CVE-2022-25666	Use After Free vulnerability in Qualcomm products Memory corruption due to use after free in service while trying to access maps by different threads in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking local low complexity qualcomm CWE-416	6.7
2022-06-14	CVE-2021-30349	Unspecified vulnerability in Qualcomm products Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking local low complexity qualcomm	6.7
2022-06-14	CVE-2021-35116	Improper Input Validation vulnerability in Qualcomm products APK can load a crafted model into the CDSP which can lead to a compromise of CDSP and other APK`s data executing there in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables local low complexity qualcomm CWE-20	6.6
2022-06-14	CVE-2021-35118	Out-of-bounds Write vulnerability in Qualcomm products An out-of-bounds write can occur due to an incorrect input check in the camera driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables local low complexity qualcomm CWE-787	4.6