Vulnerabilities > Qualcomm > Sa8540P Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-03 | CVE-2024-38418 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption while parsing the memory map info in IOCTL calls. | 7.0 |
| 2025-02-03 | CVE-2024-38420 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while configuring a Hypervisor based input virtual device. | 7.8 |
| 2025-02-03 | CVE-2024-49837 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption while reading CPU state data during guest VM suspend. | 7.8 |
| 2025-02-03 | CVE-2024-49838 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure while parsing the OCI IE with invalid length. | 7.5 |
| 2025-01-06 | CVE-2024-45555 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. | 7.8 |
| 2025-01-06 | CVE-2024-45558 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. | 7.5 |
| 2024-12-02 | CVE-2024-33044 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption while Configuring the SMR/S2CR register in Bypass mode. | 7.8 |
| 2024-12-02 | CVE-2024-33056 | Out-of-bounds Read vulnerability in Qualcomm products Memory corruption when allocating and accessing an entry in an SMEM partition continuously. | 7.8 |
| 2024-11-04 | CVE-2024-38415 | Use After Free vulnerability in Qualcomm products Memory corruption while handling session errors from firmware. | 7.8 |
| 2024-11-04 | CVE-2024-38422 | Unspecified vulnerability in Qualcomm products Memory corruption while processing voice packet with arbitrary data received from ADSP. | 7.8 |