Vulnerabilities > Qualcomm > Sd865 5G Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-06 | CVE-2023-43528 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. | 5.5 |
| 2024-01-02 | CVE-2023-33036 | NULL Pointer Dereference vulnerability in Qualcomm products Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call. | 5.5 |
| 2024-01-02 | CVE-2023-33037 | Missing Encryption of Sensitive Data vulnerability in Qualcomm products Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data. | 5.5 |
| 2023-12-05 | CVE-2023-28586 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE. | 6.5 |
| 2023-11-07 | CVE-2023-28553 | Unspecified vulnerability in Qualcomm products Information Disclosure in WLAN Host when processing WMI event command. | 5.5 |
| 2023-11-07 | CVE-2023-28554 | Unspecified vulnerability in Qualcomm products Information Disclosure in Qualcomm IPC while reading values from shared memory in VM. | 5.5 |
| 2023-10-03 | CVE-2023-28571 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in WLAN HOST while processing the WLAN scan descriptor list during roaming scan. | 5.5 |
| 2023-09-05 | CVE-2022-33220 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in Automotive multimedia due to buffer over-read. | 5.5 |
| 2023-09-05 | CVE-2023-21667 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard. | 6.5 |
| 2023-08-08 | CVE-2023-21647 | Improper Input Validation vulnerability in Qualcomm products Information disclosure in Bluetooth when an GATT packet is received due to improper input validation. | 6.5 |