Vulnerabilities > Qualcomm > Sc8180Xp AD Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-03 | CVE-2024-38420 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while configuring a Hypervisor based input virtual device. | 7.8 |
| 2025-01-06 | CVE-2024-45541 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption when IOCTL call is invoked from user-space to read board data. | 7.8 |
| 2025-01-06 | CVE-2024-45542 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver. | 7.8 |
| 2024-07-01 | CVE-2023-43554 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while processing IOCTL handler in FastRPC. | 7.8 |
| 2024-07-01 | CVE-2024-21461 | Double Free vulnerability in Qualcomm products Memory corruption while performing finish HMAC operation when context is freed by keymaster. | 7.8 |
| 2024-07-01 | CVE-2024-21465 | Out-of-bounds Read vulnerability in Qualcomm products Memory corruption while processing key blob passed by the user. | 7.8 |
| 2024-07-01 | CVE-2024-21469 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when an invoke call and a TEE call are bound for the same trusted application. | 7.8 |
| 2024-06-03 | CVE-2023-43538 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization. | 7.8 |
| 2024-06-03 | CVE-2023-43551 | Improper Authentication vulnerability in Qualcomm products Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. | 7.5 |
| 2024-05-06 | CVE-2023-33119 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache. | 7.0 |