Vulnerabilities > Qualcomm > Sm4250 AA Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-03 | CVE-2023-33035 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while invoking callback function of AFE from ADSP. | 7.8 |
| 2023-09-05 | CVE-2022-33275 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. | 7.8 |
| 2023-09-05 | CVE-2023-28560 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. | 7.8 |
| 2023-06-06 | CVE-2022-22076 | Unspecified vulnerability in Qualcomm products information disclosure due to cryptographic issue in Core during RPMB read request. | 5.5 |
| 2023-06-06 | CVE-2022-33264 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. | 7.8 |
| 2023-06-06 | CVE-2022-40507 | Double Free vulnerability in Qualcomm products Memory corruption due to double free in Core while mapping HLOS address to the list. | 7.8 |
| 2023-06-06 | CVE-2022-40521 | Improper Authentication vulnerability in Qualcomm products Transient DOS due to improper authorization in Modem | 7.5 |
| 2023-06-06 | CVE-2022-40523 | Exposure of Resource to Wrong Sphere vulnerability in Qualcomm products Information disclosure in Kernel due to indirect branch misprediction. | 5.5 |
| 2023-06-06 | CVE-2022-40529 | Incorrect Authorization vulnerability in Qualcomm products Memory corruption due to improper access control in kernel while processing a mapping request from root process. | 7.8 |
| 2023-06-06 | CVE-2022-40533 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request. | 5.5 |