Vulnerabilities > Qualcomm > Snapdragon Auto 4G Modem Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-04 | CVE-2024-38408 | Unspecified vulnerability in Qualcomm products Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. | 9.1 |
| 2024-11-04 | CVE-2024-38422 | Unspecified vulnerability in Qualcomm products Memory corruption while processing voice packet with arbitrary data received from ADSP. | 7.8 |
| 2024-11-04 | CVE-2024-38423 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while processing GPU page table switch. | 7.8 |
| 2024-08-05 | CVE-2024-33014 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing ESP IE from beacon/probe response frame. | 7.5 |
| 2024-07-01 | CVE-2024-21461 | Double Free vulnerability in Qualcomm products Memory corruption while performing finish HMAC operation when context is freed by keymaster. | 7.8 |
| 2024-07-01 | CVE-2024-21462 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while loading the TA ELF file. | 5.5 |
| 2024-07-01 | CVE-2024-23368 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption when allocating and accessing an entry in an SMEM partition. | 7.8 |
| 2024-02-06 | CVE-2023-33072 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in Core while processing control functions. | 7.8 |
| 2024-02-06 | CVE-2023-43513 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. | 7.8 |
| 2024-02-06 | CVE-2023-43522 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL. | 7.5 |