Vulnerabilities > Qualcomm > Sa9000P Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-01 | CVE-2024-21469 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when an invoke call and a TEE call are bound for the same trusted application. | 7.8 |
| 2024-07-01 | CVE-2024-23372 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size. | 7.8 |
| 2024-07-01 | CVE-2024-23373 | Use After Free vulnerability in Qualcomm products Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. | 7.8 |
| 2024-07-01 | CVE-2024-23380 | Use After Free vulnerability in Qualcomm products Memory corruption while handling user packets during VBO bind operation. | 7.8 |
| 2024-06-03 | CVE-2023-43538 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization. | 7.8 |
| 2024-06-03 | CVE-2023-43543 | Use After Free vulnerability in Qualcomm products Memory corruption in Audio during a playback or a recording due to race condition between allocation and deallocation of graph object. | 7.0 |
| 2024-06-03 | CVE-2023-43544 | Use After Free vulnerability in Qualcomm products Memory corruption when IPC callback handle is used after it has been released during register callback by another thread. | 7.8 |
| 2024-06-03 | CVE-2023-43556 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in Hypervisor when platform information mentioned is not aligned. | 8.8 |
| 2024-05-06 | CVE-2023-33119 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache. | 7.0 |
| 2024-05-06 | CVE-2023-43521 | Use After Free vulnerability in Qualcomm products Memory corruption when multiple listeners are being registered with the same file descriptor. | 7.8 |