Vulnerabilities > Qualcomm > Snapdragon X72 5G Modem RF System Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2024-10-07 CVE-2024-23369 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
local
low complexity
qualcomm CWE-119
7.8
2024-10-07 CVE-2024-33073 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
network
low complexity
qualcomm CWE-125
8.2
2024-10-07 CVE-2024-38397 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing probe response and assoc response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33048 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33050 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33057 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33060 Use After Free vulnerability in Qualcomm products
Memory corruption when two threads try to map and unmap a single node simultaneously.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-38401 Use After Free vulnerability in Qualcomm products
Memory corruption while processing concurrent IOCTL calls.
local
low complexity
qualcomm CWE-416
7.8
2024-07-01 CVE-2024-21457 Out-of-bounds Read vulnerability in Qualcomm products
INformation disclosure while handling Multi-link IE in beacon frame.
network
low complexity
qualcomm CWE-125
7.5
2024-07-01 CVE-2024-21458 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure while handling SA query action frame.
network
low complexity
qualcomm CWE-125
7.5