Vulnerabilities > Qualcomm > Sdm429W Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-12-02 CVE-2024-43052 Unspecified vulnerability in Qualcomm products
Memory corruption while processing API calls to NPU with invalid input.
local
low complexity
qualcomm
7.8
2024-11-04 CVE-2024-23385 Reachable Assertion vulnerability in Qualcomm products
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.
network
low complexity
qualcomm CWE-617
6.5
2024-11-04 CVE-2024-23386 Unspecified vulnerability in Qualcomm products
memory corruption when WiFi display APIs are invoked with large random inputs.
local
low complexity
qualcomm
6.7
2024-11-04 CVE-2024-33031 Unspecified vulnerability in Qualcomm products
Memory corruption while processing the update SIM PB records request.
local
low complexity
qualcomm
6.7
2024-11-04 CVE-2024-33068 Use After Free vulnerability in Qualcomm products
Transient DOS while parsing fragments of MBSSID IE from beacon frame.
network
low complexity
qualcomm CWE-416
6.5
2024-11-04 CVE-2024-38403 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing BTM ML IE when per STA profile is not included.
network
low complexity
qualcomm CWE-125
6.5
2024-11-04 CVE-2024-38406 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption while handling IOCTL calls in JPEG Encoder driver.
local
high complexity
qualcomm CWE-367
7.0
2024-11-04 CVE-2024-38407 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver.
local
high complexity
qualcomm CWE-367
7.0
2024-11-04 CVE-2024-38409 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption while station LL statistic handling.
local
low complexity
qualcomm CWE-120
7.8
2024-11-04 CVE-2024-38410 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.
local
low complexity
qualcomm CWE-787
7.8