Vulnerabilities > Qualcomm > Sa8145P Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-19 | CVE-2022-25749 | Out-of-bounds Read vulnerability in Qualcomm products Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. | 7.5 |
| 2022-10-19 | CVE-2022-33210 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption in automotive multimedia due to use of out-of-range pointer offset while parsing command request packet with a very large type value. | 7.8 |
| 2022-10-19 | CVE-2022-33214 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption in display due to time-of-check time-of-use of metadata reserved size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables | 7.0 |
| 2022-09-02 | CVE-2022-22100 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto | 7.8 |
| 2022-09-02 | CVE-2022-22102 | Incorrect Type Conversion or Cast vulnerability in Qualcomm products Memory corruption in multimedia due to incorrect type conversion while adding data in Snapdragon Auto | 7.8 |
| 2022-09-02 | CVE-2022-22104 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption in multimedia due to improper check on the messages received. | 7.8 |
| 2022-06-14 | CVE-2021-30281 | Unspecified vulnerability in Qualcomm products Possible unauthorized access to secure space due to improper check of data allowed while flashing the no access control device configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking | 7.8 |
| 2022-06-14 | CVE-2021-30334 | Use After Free vulnerability in Qualcomm products Possible use after free due to lack of null check of DRM file status after file structure is freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables | 7.8 |
| 2022-06-14 | CVE-2021-30350 | Improper Validation of Specified Quantity in Input vulnerability in Qualcomm products Lack of MBN header size verification against input buffer can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables | 7.8 |
| 2022-06-14 | CVE-2021-35100 | Out-of-bounds Read vulnerability in Qualcomm products Possible buffer over read due to improper calculation of string length while parsing Id3 tag in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | 7.5 |