Vulnerabilities > Qualcomm > Sdx55 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2025-03-03 CVE-2024-43057 Use After Free vulnerability in Qualcomm products
Memory corruption while processing command in Glink linux.
local
low complexity
qualcomm CWE-416
7.8
2025-03-03 CVE-2024-53014 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption may occur while validating ports and channels in Audio driver.
local
low complexity
qualcomm CWE-129
7.8
2025-03-03 CVE-2025-21424 Use After Free vulnerability in Qualcomm products
Memory corruption while calling the NPU driver APIs concurrently.
local
low complexity
qualcomm CWE-416
7.8
2025-02-03 CVE-2024-38418 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption while parsing the memory map info in IOCTL calls.
local
high complexity
qualcomm CWE-367
7.0
2025-02-03 CVE-2024-38420 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while configuring a Hypervisor based input virtual device.
local
low complexity
qualcomm CWE-787
7.8
2025-02-03 CVE-2024-45571 Use After Free vulnerability in Qualcomm products
Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface.
local
low complexity
qualcomm CWE-416
7.8
2025-01-06 CVE-2024-45558 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
network
low complexity
qualcomm CWE-125
7.5
2024-12-02 CVE-2024-33044 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
local
low complexity
qualcomm CWE-129
7.8
2024-12-02 CVE-2024-33056 Out-of-bounds Read vulnerability in Qualcomm products
Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
local
low complexity
qualcomm CWE-125
7.8
2024-12-02 CVE-2024-43050 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while invoking IOCTL calls from user space to issue factory test command inside WLAN driver.
local
low complexity
qualcomm CWE-787
7.8