Vulnerabilities > Qualcomm > Sdm660 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-06-06 CVE-2023-21657 Improper Input Validation vulnerability in Qualcomm products
Memoru corruption in Audio when ADSP sends input during record use case.
local
low complexity
qualcomm CWE-20
7.8
2023-06-06 CVE-2023-21659 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware while processing frames with missing header fields.
network
low complexity
qualcomm CWE-125
7.5
2023-06-06 CVE-2023-21661 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing WLAN beacon or probe-response frame.
network
low complexity
qualcomm CWE-125
7.5
2023-06-06 CVE-2023-21670 Incorrect Authorization vulnerability in Qualcomm products
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
local
low complexity
qualcomm CWE-863
7.8
2023-05-02 CVE-2022-40504 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
network
low complexity
qualcomm CWE-617
7.5
2023-05-02 CVE-2023-21665 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory corruption in Graphics while importing a file.
local
low complexity
qualcomm CWE-704
7.8
2023-05-02 CVE-2023-21666 Memory Leak vulnerability in Qualcomm products
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.
local
low complexity
qualcomm CWE-401
7.8
2023-04-13 CVE-2022-33231 Double Free vulnerability in Qualcomm products
Memory corruption due to double free in core while initializing the encryption key.
local
low complexity
qualcomm CWE-415
7.8
2023-04-13 CVE-2022-33302 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.
local
low complexity
qualcomm CWE-129
7.8
2023-04-13 CVE-2022-40503 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.
network
low complexity
qualcomm CWE-125
7.5