Vulnerabilities > Qualcomm > Sm7250P Firmware > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-06-06 | CVE-2022-40536 | Improper Authentication vulnerability in Qualcomm products Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network. | 7.5 |
2023-06-06 | CVE-2023-21628 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command. | 7.8 |
2023-06-06 | CVE-2023-21657 | Improper Input Validation vulnerability in Qualcomm products Memoru corruption in Audio when ADSP sends input during record use case. | 7.8 |
2023-06-06 | CVE-2023-21659 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS in WLAN Firmware while processing frames with missing header fields. | 7.5 |
2023-06-06 | CVE-2023-21670 | Incorrect Authorization vulnerability in Qualcomm products Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode. | 7.8 |
2023-05-02 | CVE-2022-40504 | Reachable Assertion vulnerability in Qualcomm products Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. | 7.5 |
2023-05-02 | CVE-2022-25713 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key. | 7.8 |
2023-05-02 | CVE-2022-33305 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH. | 7.5 |
2023-05-02 | CVE-2022-34144 | Reachable Assertion vulnerability in Qualcomm products Transient DOS due to reachable assertion in Modem during OSI decode scheduling. | 7.5 |
2023-05-02 | CVE-2022-40508 | Reachable Assertion vulnerability in Qualcomm products Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported. | 7.5 |