Vulnerabilities > Qualcomm > Snapdragon X5 LTE Modem Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-04-13 CVE-2022-25737 Use of Uninitialized Resource vulnerability in Qualcomm products
Information disclosure in modem due to missing NULL check while reading packets received from local network
network
low complexity
qualcomm CWE-908
7.5
2023-04-13 CVE-2022-25739 NULL Pointer Dereference vulnerability in Qualcomm products
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call
network
low complexity
qualcomm CWE-476
7.5
2023-04-13 CVE-2022-25747 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33222 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure due to buffer over-read while parsing DNS response packets in Modem.
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33223 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding.
network
low complexity
qualcomm CWE-476
7.5
2023-04-13 CVE-2022-33228 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by-hop or destination option in header.
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33287 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet.
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33291 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length.
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33294 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS in Modem due to NULL pointer dereference while receiving response of lwm2m registration/update/bootstrap request message.
network
low complexity
qualcomm CWE-476
7.5
2023-04-13 CVE-2022-33295 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in Modem due to buffer over-read while parsing the wms message received given the buffer and its length.
network
low complexity
qualcomm CWE-125
7.5