Vulnerabilities > Qualcomm > Snapdragon X65 5G Modem RF System Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-09-02 CVE-2024-33045 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33048 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33050 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33057 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33060 Use After Free vulnerability in Qualcomm products
Memory corruption when two threads try to map and unmap a single node simultaneously.
local
low complexity
qualcomm CWE-416
7.8
2024-08-05 CVE-2024-33014 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing ESP IE from beacon/probe response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33015 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33018 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33019 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the received TID-to-link mapping action frame.
network
low complexity
qualcomm CWE-125
7.5
2024-08-05 CVE-2024-33023 Use After Free vulnerability in Qualcomm products
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
local
low complexity
qualcomm CWE-416
7.8