Vulnerabilities > Qualcomm > Sm4635 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-06 | CVE-2024-45553 | Use After Free vulnerability in Qualcomm products Memory corruption can occur when process-specific maps are added to the global list. | 7.8 |
| 2024-12-02 | CVE-2024-33056 | Out-of-bounds Read vulnerability in Qualcomm products Memory corruption when allocating and accessing an entry in an SMEM partition continuously. | 7.8 |
| 2024-12-02 | CVE-2024-43048 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when invalid input is passed to invoke GPU Headroom API call. | 7.8 |
| 2024-11-04 | CVE-2024-38419 | Use After Free vulnerability in Qualcomm products Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node. | 7.8 |
| 2024-11-04 | CVE-2024-38421 | Use After Free vulnerability in Qualcomm products Memory corruption while processing GPU commands. | 7.8 |
| 2024-11-04 | CVE-2024-38422 | Unspecified vulnerability in Qualcomm products Memory corruption while processing voice packet with arbitrary data received from ADSP. | 7.8 |
| 2024-11-04 | CVE-2024-38424 | Use After Free vulnerability in Qualcomm products Memory corruption during GNSS HAL process initialization. | 7.8 |
| 2024-10-07 | CVE-2024-23369 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers. | 7.8 |
| 2024-09-02 | CVE-2024-33045 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when BTFM client sends new messages over Slimbus to ADSP. | 7.8 |
| 2024-09-02 | CVE-2024-33050 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper. | 7.5 |