Vulnerabilities > Qualcomm > Snapdragon 8CX GEN 3 Compute Platform Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-01-02 CVE-2023-33037 Missing Encryption of Sensitive Data vulnerability in Qualcomm products
Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data.
local
low complexity
qualcomm CWE-311
5.5
2024-01-02 CVE-2023-33110 Race Condition vulnerability in Qualcomm products
The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption.
local
high complexity
qualcomm CWE-362
7.0
2024-01-02 CVE-2023-43511 Infinite Loop vulnerability in Qualcomm products
Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
network
low complexity
qualcomm CWE-835
7.5
2023-11-07 CVE-2023-24852 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in Core due to secure memory access by user while loading modem image.
local
low complexity
qualcomm CWE-787
7.8
2023-11-07 CVE-2023-28545 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in TZ Secure OS while loading an app ELF.
local
low complexity
qualcomm CWE-787
7.8
2023-11-07 CVE-2023-28556 Unspecified vulnerability in Qualcomm products
Cryptographic issue in HLOS during key management.
local
low complexity
qualcomm
7.8
2023-09-05 CVE-2023-28548 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.
local
low complexity
qualcomm CWE-129
7.8
2023-09-05 CVE-2023-28549 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.
local
low complexity
qualcomm CWE-119
7.8
2023-09-05 CVE-2023-28557 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
local
low complexity
qualcomm CWE-129
7.8
2023-09-05 CVE-2023-28558 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN handler while processing PhyID in Tx status handler.
local
low complexity
qualcomm CWE-787
7.8