Vulnerabilities > Qualcomm > Snapdragon X5 LTE Modem Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-04 | CVE-2024-38422 | Unspecified vulnerability in Qualcomm products Memory corruption while processing voice packet with arbitrary data received from ADSP. | 7.8 |
| 2024-11-04 | CVE-2024-38423 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while processing GPU page table switch. | 7.8 |
| 2024-02-06 | CVE-2023-33067 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points. | 7.8 |
| 2024-02-06 | CVE-2023-33068 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in Audio while processing IIR config data from AFE calibration block. | 7.8 |
| 2024-02-06 | CVE-2023-33069 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption in Audio while processing the calibration data returned from ACDB loader. | 7.8 |
| 2024-01-02 | CVE-2023-33030 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in HLOS while running playready use-case. | 7.8 |
| 2024-01-02 | CVE-2023-33033 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in Audio during playback with speaker protection. | 7.8 |
| 2024-01-02 | CVE-2023-33110 | Race Condition vulnerability in Qualcomm products The session index variable in PCM host voice audio driver initialized before PCM open, accessed during event callback from ADSP and reset during PCM close may lead to race condition between event callback - PCM close and reset session index causing memory corruption. | 7.0 |
| 2024-01-02 | CVE-2023-43511 | Infinite Loop vulnerability in Qualcomm products Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header. | 7.5 |
| 2023-12-05 | CVE-2023-28550 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in MPP performance while accessing DSM watermark using external memory address. | 7.8 |