Vulnerabilities > Qualcomm > Sd888 5G Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-10 | CVE-2022-40540 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel. | 7.8 |
| 2023-02-12 | CVE-2022-33232 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory. | 7.8 |
| 2023-02-12 | CVE-2022-33233 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to configuration weakness in modem wile sending command to write protected files. | 7.8 |
| 2023-02-12 | CVE-2022-33243 | Unspecified vulnerability in Qualcomm products Memory corruption due to improper access control in Qualcomm IPC. | 7.8 |
| 2023-02-12 | CVE-2022-33248 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http. | 7.8 |
| 2023-02-12 | CVE-2022-33271 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer over-read in WLAN while parsing NMF frame. | 7.5 |
| 2023-02-12 | CVE-2022-33277 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command. | 7.8 |
| 2023-02-12 | CVE-2022-33306 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs. | 7.5 |
| 2023-02-12 | CVE-2022-40512 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon. | 7.5 |
| 2023-02-12 | CVE-2022-40514 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame. | 9.8 |