Vulnerabilities > Qualcomm > Sm7250 AB Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-10-03 CVE-2023-24850 Improper Validation of Array Index vulnerability in Qualcomm products
Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
local
low complexity
qualcomm CWE-129
7.8
7.8
2023-10-03 CVE-2023-24853 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in HLOS while registering for key provisioning notify.
local
low complexity
qualcomm CWE-787
7.8
7.8
2023-10-03 CVE-2023-28540 Improper Authentication vulnerability in Qualcomm products
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
network
low complexity
qualcomm CWE-287
7.5
7.5
2023-10-03 CVE-2023-33027 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware while parsing rsn ies.
network
low complexity
qualcomm CWE-125
7.5
7.5
2023-10-03 CVE-2023-33035 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption while invoking callback function of AFE from ADSP.
local
low complexity
qualcomm CWE-120
7.8
7.8
2023-09-05 CVE-2022-33275 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
local
low complexity
qualcomm CWE-129
7.8
7.8
2023-09-05 CVE-2023-28560 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.
local
low complexity
qualcomm CWE-787
7.8
7.8
2023-06-06 CVE-2022-22060 Reachable Assertion vulnerability in Qualcomm products
Assertion occurs while processing Reconfiguration message due to improper validation
network
low complexity
qualcomm CWE-617
7.5
7.5
2023-06-06 CVE-2022-33251 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem because of invalid network configuration.
network
low complexity
qualcomm CWE-617
7.5
7.5
2023-06-06 CVE-2022-33264 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
local
low complexity
qualcomm CWE-787
7.8
7.8