Vulnerabilities > Qualcomm > Sa8195P Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-05-02 | CVE-2022-40504 | Reachable Assertion vulnerability in Qualcomm products Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. | 7.5 |
2023-05-02 | CVE-2022-25713 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key. | 7.8 |
2023-05-02 | CVE-2023-21642 | Unspecified vulnerability in Qualcomm products Memory corruption in HAB Memory management due to broad system privileges via physical address. | 7.8 |
2023-05-02 | CVE-2023-21665 | Incorrect Type Conversion or Cast vulnerability in Qualcomm products Memory corruption in Graphics while importing a file. | 7.8 |
2023-05-02 | CVE-2023-21666 | Memory Leak vulnerability in Qualcomm products Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool. | 7.8 |
2023-04-13 | CVE-2022-33231 | Double Free vulnerability in Qualcomm products Memory corruption due to double free in core while initializing the encryption key. | 7.8 |
2023-04-13 | CVE-2022-33282 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video playback. | 7.8 |
2023-04-13 | CVE-2022-33298 | Use After Free vulnerability in Qualcomm products Memory corruption due to use after free in Modem while modem initialization. | 7.8 |
2023-04-13 | CVE-2022-33301 | Incorrect Type Conversion or Cast vulnerability in Qualcomm products Memory corruption due to incorrect type conversion or cast in audio while using audio playback/capture when crafted address is sent from AGM IPC to AGM. | 7.8 |
2023-04-13 | CVE-2022-40503 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming. | 7.5 |