Vulnerabilities > Qualcomm > Sm6250 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-07 | CVE-2024-33065 | Unspecified vulnerability in Qualcomm products Memory corruption while taking snapshot when an offset variable is set by camera driver. | 7.8 |
| 2024-09-02 | CVE-2024-33042 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when Alternative Frequency offset value is set to 255. | 7.8 |
| 2024-09-02 | CVE-2024-33051 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while processing TIM IE from beacon frame as there is no check for IE length. | 7.5 |
| 2024-09-02 | CVE-2024-33052 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when user provides data for FM HCI command control operations. | 7.8 |
| 2024-09-02 | CVE-2024-33060 | Use After Free vulnerability in Qualcomm products Memory corruption when two threads try to map and unmap a single node simultaneously. | 7.8 |
| 2024-07-01 | CVE-2024-21461 | Double Free vulnerability in Qualcomm products Memory corruption while performing finish HMAC operation when context is freed by keymaster. | 7.8 |
| 2024-07-01 | CVE-2024-21465 | Out-of-bounds Read vulnerability in Qualcomm products Memory corruption while processing key blob passed by the user. | 7.8 |
| 2024-07-01 | CVE-2024-23368 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption when allocating and accessing an entry in an SMEM partition. | 7.8 |
| 2024-07-01 | CVE-2024-23373 | Use After Free vulnerability in Qualcomm products Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. | 7.8 |
| 2024-02-06 | CVE-2023-43513 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | 7.8 |