Vulnerabilities > Qualcomm > Sd855 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-10 | CVE-2022-33278 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity. | 7.8 |
| 2023-03-10 | CVE-2022-40515 | Double Free vulnerability in Qualcomm products Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms. | 9.8 |
| 2023-03-10 | CVE-2022-40530 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase. | 7.8 |
| 2023-03-10 | CVE-2022-40531 | Incorrect Type Conversion or Cast vulnerability in Qualcomm products Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. | 7.8 |
| 2023-03-10 | CVE-2022-40537 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response. | 9.8 |
| 2023-02-12 | CVE-2022-33232 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory. | 7.8 |
| 2023-02-12 | CVE-2022-33233 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to configuration weakness in modem wile sending command to write protected files. | 7.8 |
| 2023-02-12 | CVE-2022-33243 | Unspecified vulnerability in Qualcomm products Memory corruption due to improper access control in Qualcomm IPC. | 7.8 |
| 2023-02-12 | CVE-2022-33246 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption in Audio due to use of out-of-range pointer offset while Initiating a voice call session from user space with invalid session id. | 7.8 |
| 2023-02-12 | CVE-2022-33248 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http. | 7.8 |