Vulnerabilities > Qualcomm > Snapdragon X55 5G Modem RF System Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-05 CVE-2023-33044 Reachable Assertion vulnerability in Qualcomm products
Transient DOS in Data modem while handling TLB control messages from the Network.
network
low complexity
qualcomm CWE-617
7.5
2023-12-05 CVE-2023-33063 Use After Free vulnerability in Qualcomm products
Memory corruption in DSP Services during a remote call from HLOS to DSP.
local
low complexity
qualcomm CWE-416
7.8
2023-12-05 CVE-2023-33079 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption in Audio while running invalid audio recording from ADSP.
local
low complexity
qualcomm CWE-119
7.8
2023-12-05 CVE-2023-33080 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
network
low complexity
qualcomm CWE-125
7.5
2023-12-05 CVE-2023-33081 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.
network
low complexity
qualcomm CWE-125
7.5
2023-12-05 CVE-2023-33088 NULL Pointer Dereference vulnerability in Qualcomm products
Memory corruption when processing cmd parameters while parsing vdev.
local
low complexity
qualcomm CWE-476
7.8
2023-12-05 CVE-2023-33089 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS when processing a NULL buffer while parsing WLAN vdev.
network
low complexity
qualcomm CWE-476
7.5
2023-12-05 CVE-2023-33092 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption while processing pin reply in Bluetooth, when pin code received from APP layer is greater than expected size.
local
low complexity
qualcomm CWE-119
7.8
2023-12-05 CVE-2023-33098 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
network
low complexity
qualcomm CWE-125
7.5
2023-12-05 CVE-2023-33106 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
local
low complexity
qualcomm CWE-119
7.8