Vulnerabilities > Qualcomm > Sdxr2 5G Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-21627 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory corruption in Trusted Execution Environment while calling service API with invalid address.
local
low complexity
qualcomm CWE-704
7.8
2023-08-08 CVE-2023-21647 Improper Input Validation vulnerability in Qualcomm products
Information disclosure in Bluetooth when an GATT packet is received due to improper input validation.
network
low complexity
qualcomm CWE-20
6.5
2023-08-08 CVE-2023-21649 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN while running doDriverCmd for an unspecific command.
local
low complexity
qualcomm CWE-787
7.8
2023-08-08 CVE-2023-21650 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length.
local
low complexity
qualcomm CWE-787
7.8
2023-08-08 CVE-2023-21651 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
local
low complexity
qualcomm CWE-704
7.8
2023-08-08 CVE-2023-21652 Use of Hard-coded Credentials vulnerability in Qualcomm products
Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
local
low complexity
qualcomm CWE-798
7.1
2023-08-08 CVE-2023-22666 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Audio while playing amrwbplus clips with modified content.
local
low complexity
qualcomm CWE-787
7.8
2023-03-10 CVE-2022-22075 Unspecified vulnerability in Qualcomm products
Information Disclosure in Graphics during GPU context switch.
local
low complexity
qualcomm
5.5
2023-03-10 CVE-2022-25694 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM
local
low complexity
qualcomm CWE-119
7.8
2023-03-10 CVE-2022-25705 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
local
low complexity
qualcomm CWE-190
7.8