Vulnerabilities > Qualcomm > Sa8540P Firmware

DATE CVE VULNERABILITY TITLE RISK
2025-02-03 CVE-2024-38417 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure while processing IO control commands.
local
low complexity
qualcomm CWE-125
5.5
2025-02-03 CVE-2024-38418 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption while parsing the memory map info in IOCTL calls.
local
high complexity
qualcomm CWE-367
7.0
2025-02-03 CVE-2024-38420 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while configuring a Hypervisor based input virtual device.
local
low complexity
qualcomm CWE-787
7.8
2025-02-03 CVE-2024-45569 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption while parsing the ML IE due to invalid frame content.
network
low complexity
qualcomm CWE-129
critical
9.8
2025-02-03 CVE-2024-49837 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption while reading CPU state data during guest VM suspend.
local
low complexity
qualcomm CWE-129
7.8
2025-02-03 CVE-2024-49838 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure while parsing the OCI IE with invalid length.
network
low complexity
qualcomm CWE-125
7.5
2025-02-03 CVE-2024-49839 Out-of-bounds Read vulnerability in Qualcomm products
Memory corruption during management frame processing due to mismatch in T2LM info element.
network
low complexity
qualcomm CWE-125
critical
9.8
2025-01-06 CVE-2024-23366 Out-of-bounds Read vulnerability in Qualcomm products
Information Disclosure while invoking the mailbox write API when message received from user is larger than mailbox size.
local
low complexity
qualcomm CWE-125
5.5
2025-01-06 CVE-2024-33067 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.
local
low complexity
qualcomm CWE-125
5.5
2025-01-06 CVE-2024-43063 Out-of-bounds Read vulnerability in Qualcomm products
information disclosure while invoking the mailbox read API.
local
low complexity
qualcomm CWE-125
5.5