Vulnerabilities > Qualcomm > Sdm429W Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-05 CVE-2023-33018 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption while using the UIM diag command to get the operators name.
local
low complexity
qualcomm CWE-190
7.8
2023-12-05 CVE-2023-33063 Use After Free vulnerability in Qualcomm products
Memory corruption in DSP Services during a remote call from HLOS to DSP.
local
low complexity
qualcomm CWE-416
7.8
2023-12-05 CVE-2023-33107 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
local
low complexity
qualcomm CWE-190
7.8
2023-11-07 CVE-2023-28570 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while processing audio effects.
local
low complexity
qualcomm CWE-787
7.8
2023-11-07 CVE-2023-33031 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.
local
low complexity
qualcomm CWE-787
7.8
2023-11-07 CVE-2023-33059 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Audio while processing the VOC packet data from ADSP.
local
low complexity
qualcomm CWE-787
7.8
2023-10-03 CVE-2023-24848 Unspecified vulnerability in Qualcomm products
Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.
network
low complexity
qualcomm
7.5
2023-10-03 CVE-2023-24849 Unspecified vulnerability in Qualcomm products
Information Disclosure in data Modem while parsing an FMTP line in an SDP message.
network
low complexity
qualcomm
7.5
2023-10-03 CVE-2023-24850 Improper Validation of Array Index vulnerability in Qualcomm products
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
local
low complexity
qualcomm CWE-129
7.8
2023-09-05 CVE-2023-33019 Unspecified vulnerability in Qualcomm products
Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.
network
low complexity
qualcomm
7.5