Vulnerabilities > Qualcomm > Snapdragon 855 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-09-02 CVE-2024-33042 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when Alternative Frequency offset value is set to 255.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33051 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33052 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when user provides data for FM HCI command control operations.
local
low complexity
qualcomm CWE-787
7.8
2024-08-05 CVE-2024-23357 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.
local
low complexity
qualcomm CWE-476
5.5
2024-08-05 CVE-2024-33027 Unspecified vulnerability in Qualcomm products
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.
local
low complexity
qualcomm
7.8
2023-09-05 CVE-2023-28562 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while handling payloads from remote ESL.
network
low complexity
qualcomm CWE-787
critical
9.8
2023-09-05 CVE-2023-28564 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while passing command parameters through WMI interfaces.
local
low complexity
qualcomm CWE-787
7.8
2023-09-05 CVE-2023-28565 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while handling command streams through WMI interfaces.
local
low complexity
qualcomm CWE-787
7.8
2023-09-05 CVE-2023-28567 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while handling command through WMI interfaces.
local
low complexity
qualcomm CWE-787
7.8
2023-09-05 CVE-2023-28584 Unspecified vulnerability in Qualcomm products
Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement (CSA).
network
low complexity
qualcomm
7.5