Vulnerabilities > Qualcomm > Sdm429 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-06 | CVE-2023-21659 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS in WLAN Firmware while processing frames with missing header fields. | 7.5 |
| 2023-06-06 | CVE-2023-21669 | Out-of-bounds Read vulnerability in Qualcomm products Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address. | 7.5 |
| 2023-06-06 | CVE-2023-21670 | Incorrect Authorization vulnerability in Qualcomm products Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode. | 7.8 |
| 2023-05-02 | CVE-2022-40504 | Reachable Assertion vulnerability in Qualcomm products Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. | 7.5 |
| 2023-05-02 | CVE-2023-21665 | Incorrect Type Conversion or Cast vulnerability in Qualcomm products Memory corruption in Graphics while importing a file. | 7.8 |
| 2023-05-02 | CVE-2023-21666 | Memory Leak vulnerability in Qualcomm products Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool. | 7.8 |
| 2023-04-13 | CVE-2022-33289 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. | 6.8 |
| 2023-04-13 | CVE-2022-33296 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message. | 7.8 |
| 2023-04-13 | CVE-2022-33302 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. | 7.8 |
| 2023-04-13 | CVE-2022-40503 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming. | 7.5 |