Vulnerabilities > Qualcomm > Snapdragon X55 5G Modem RF System Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-09-02 CVE-2024-33060 Use After Free vulnerability in Qualcomm products
Memory corruption when two threads try to map and unmap a single node simultaneously.
local
low complexity
qualcomm CWE-416
7.8
2024-08-05 CVE-2024-33014 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing ESP IE from beacon/probe response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33020 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while processing TID-to-link mapping IE elements.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33024 Integer Overflow or Wraparound vulnerability in Qualcomm products
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
network
low complexity
qualcomm CWE-190
7.5
2024-08-05 CVE-2024-33025 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33027 Unspecified vulnerability in Qualcomm products
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.
local
low complexity
qualcomm
7.8
2024-07-01 CVE-2024-21461 Double Free vulnerability in Qualcomm products
Memory corruption while performing finish HMAC operation when context is freed by keymaster.
local
low complexity
qualcomm CWE-415
7.8
2024-07-01 CVE-2024-21462 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while loading the TA ELF file.
local
low complexity
qualcomm CWE-125
5.5
2024-07-01 CVE-2024-21465 Out-of-bounds Read vulnerability in Qualcomm products
Memory corruption while processing key blob passed by the user.
local
low complexity
qualcomm CWE-125
7.8
2024-07-01 CVE-2024-21469 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
local
low complexity
qualcomm CWE-787
7.8