Vulnerabilities > Qualcomm > Sm7250P Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-05-02 CVE-2022-33305 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.
network
low complexity
qualcomm CWE-476
7.5
2023-05-02 CVE-2022-34144 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem during OSI decode scheduling.
network
low complexity
qualcomm CWE-617
7.5
2023-05-02 CVE-2022-40508 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported.
network
low complexity
qualcomm CWE-617
7.5
2023-05-02 CVE-2023-21665 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory corruption in Graphics while importing a file.
local
low complexity
qualcomm CWE-704
7.8
2023-05-02 CVE-2023-21666 Memory Leak vulnerability in Qualcomm products
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.
local
low complexity
qualcomm CWE-401
7.8
2023-04-13 CVE-2022-33231 Double Free vulnerability in Qualcomm products
Memory corruption due to double free in core while initializing the encryption key.
local
low complexity
qualcomm CWE-415
7.8
2023-04-13 CVE-2022-33269 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.
local
low complexity
qualcomm CWE-190
7.8
2023-04-13 CVE-2022-33288 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
local
low complexity
qualcomm CWE-120
8.8
2023-04-13 CVE-2022-33296 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message.
local
low complexity
qualcomm CWE-190
7.8
2023-04-13 CVE-2022-33302 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.
local
low complexity
qualcomm CWE-129
7.8