Vulnerabilities > Qualcomm > Snapdragon X70 Modem RF System Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-03 | CVE-2023-24847 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS in Modem while allocating DSM items. | 7.5 |
| 2023-10-03 | CVE-2023-24848 | Unspecified vulnerability in Qualcomm products Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. | 7.5 |
| 2023-10-03 | CVE-2023-24849 | Unspecified vulnerability in Qualcomm products Information Disclosure in data Modem while parsing an FMTP line in an SDP message. | 7.5 |
| 2023-10-03 | CVE-2023-28540 | Improper Authentication vulnerability in Qualcomm products Cryptographic issue in Data Modem due to improper authentication during TLS handshake. | 7.5 |
| 2023-06-06 | CVE-2022-33251 | Reachable Assertion vulnerability in Qualcomm products Transient DOS due to reachable assertion in Modem because of invalid network configuration. | 7.5 |
| 2023-06-06 | CVE-2022-33264 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. | 7.8 |
| 2023-06-06 | CVE-2022-40507 | Double Free vulnerability in Qualcomm products Memory corruption due to double free in Core while mapping HLOS address to the list. | 7.8 |
| 2023-06-06 | CVE-2022-40521 | Improper Authentication vulnerability in Qualcomm products Transient DOS due to improper authorization in Modem | 7.5 |
| 2023-06-06 | CVE-2022-40536 | Improper Authentication vulnerability in Qualcomm products Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network. | 7.5 |
| 2023-06-06 | CVE-2022-40538 | Reachable Assertion vulnerability in Qualcomm products Transient DOS due to reachable assertion in modem while processing sib with incorrect values from network. | 7.5 |