Vulnerabilities > Qualcomm > Snapdragon 8 GEN 1 Mobile Platform Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-02 | CVE-2024-33036 | Use of Out-of-range Pointer Offset vulnerability in Qualcomm products Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access. | 6.7 |
| 2024-11-04 | CVE-2024-23385 | Reachable Assertion vulnerability in Qualcomm products Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE. | 6.5 |
| 2024-11-04 | CVE-2024-23386 | Unspecified vulnerability in Qualcomm products memory corruption when WiFi display APIs are invoked with large random inputs. | 6.7 |
| 2024-11-04 | CVE-2024-33030 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while parsing IPC frequency table parameters for LPLH that has size greater than expected size. | 6.7 |
| 2024-11-04 | CVE-2024-33032 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it. | 6.7 |
| 2024-10-07 | CVE-2024-23374 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption is possible when an attempt is made from userspace or console to write some haptics effects pattern to the haptics debugfs file. | 6.7 |
| 2024-10-07 | CVE-2024-23376 | Use After Free vulnerability in Qualcomm products Memory corruption while sending the persist buffer command packet from the user-space to the kernel space through the IOCTL call. | 6.7 |
| 2024-10-07 | CVE-2024-23379 | Double Free vulnerability in Qualcomm products Memory corruption while unmapping the fastrpc map when two threads can free the same map in concurrent scenario. | 6.7 |
| 2024-10-07 | CVE-2024-38425 | Incorrect Authorization vulnerability in Qualcomm products Information disclosure while sending implicit broadcast containing APP launch information. | 6.1 |
| 2024-09-02 | CVE-2024-33043 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while handling PS event when Program Service name length offset value is set to 255. | 5.5 |