Vulnerabilities > Qualcomm > Sa8195P Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-21650 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length.
local
low complexity
qualcomm CWE-787
7.8
2023-08-08 CVE-2023-21652 Use of Hard-coded Credentials vulnerability in Qualcomm products
Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
local
low complexity
qualcomm CWE-798
7.1
2023-08-08 CVE-2023-22666 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Audio while playing amrwbplus clips with modified content.
local
low complexity
qualcomm CWE-787
7.8
2023-08-08 CVE-2023-28537 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while allocating memory in COmxApeDec module in Audio.
local
low complexity
qualcomm CWE-787
7.8
2023-08-08 CVE-2023-28555 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in Audio while remapping channel buffer in media codec decoding.
network
low complexity
qualcomm CWE-125
7.5
2023-08-08 CVE-2023-28575 Type Confusion vulnerability in Qualcomm products
The cam_get_device_priv function does not check the type of handle being returned (device/session/link).
local
low complexity
qualcomm CWE-843
7.8
2023-07-04 CVE-2023-21633 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Linux while processing QcRilRequestImsRegisterMultiIdentityMessage request.
local
low complexity
qualcomm CWE-787
7.8
2023-07-04 CVE-2023-21635 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Data Network Stack & Connectivity when sim gets detected on telephony.
local
low complexity
qualcomm CWE-787
7.8
2023-07-04 CVE-2023-21637 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Linux while calling system configuration APIs.
local
low complexity
qualcomm CWE-787
7.8
2023-07-04 CVE-2023-21638 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory corruption in Video while calling APIs with different instance ID than the one received in initialization.
local
low complexity
qualcomm CWE-704
7.8