Vulnerabilities > Qualcomm > Sa8195P Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2024-10-07 CVE-2024-23369 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
local
low complexity
qualcomm CWE-119
7.8
2024-10-07 CVE-2024-33049 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
network
low complexity
qualcomm CWE-125
7.5
2024-10-07 CVE-2024-33073 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
network
low complexity
qualcomm CWE-125
8.2
2024-10-07 CVE-2024-38397 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing probe response and assoc response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-10-07 CVE-2024-38399 Use After Free vulnerability in Qualcomm products
Memory corruption while processing user packets to generate page faults.
local
low complexity
qualcomm CWE-416
7.8
2024-10-07 CVE-2024-43047 Use After Free vulnerability in Qualcomm products
Memory corruption while maintaining memory maps of HLOS memory.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-33042 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when Alternative Frequency offset value is set to 255.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33045 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33048 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33050 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
network
low complexity
qualcomm CWE-125
7.5