Vulnerabilities > Qualcomm > Snapdragon X72 5G Modem RF Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-06 | CVE-2024-45558 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. | 7.5 |
| 2024-09-02 | CVE-2024-38402 | Use After Free vulnerability in Qualcomm products Memory corruption while processing IOCTL call for getting group info. | 7.8 |
| 2024-05-06 | CVE-2023-33119 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache. | 7.0 |
| 2024-05-06 | CVE-2023-43521 | Use After Free vulnerability in Qualcomm products Memory corruption when multiple listeners are being registered with the same file descriptor. | 7.8 |
| 2024-05-06 | CVE-2023-43524 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption when the bandpass filter order received from AHAL is not within the expected range. | 7.8 |
| 2024-05-06 | CVE-2023-43525 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while copying the sound model data from user to kernel buffer during sound model register. | 7.8 |
| 2024-05-06 | CVE-2023-43526 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while querying module parameters from Listen Sound model client in kernel from user space. | 7.8 |
| 2024-05-06 | CVE-2023-43528 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. | 5.5 |
| 2024-05-06 | CVE-2023-43530 | Integer Overflow or Wraparound vulnerability in Qualcomm products Memory corruption in HLOS while checking for the storage type. | 7.8 |
| 2024-05-06 | CVE-2023-43531 | Access of Uninitialized Pointer vulnerability in Qualcomm products Memory corruption while verifying the serialized header when the key pairs are generated. | 7.8 |