Vulnerabilities > Qualcomm > Snapdragon XR2 5G Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-03-04 CVE-2023-28578 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Core Services while executing the command for removing a single event listener.
local
low complexity
qualcomm CWE-787
7.8
2024-03-04 CVE-2023-33066 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Audio while processing RT proxy port register driver.
local
low complexity
qualcomm CWE-787
7.8
2024-03-04 CVE-2023-43548 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while parsing qcp clip with invalid chunk data size.
network
low complexity
qualcomm CWE-787
critical
9.8
2024-03-04 CVE-2023-43549 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while processing TPC target power table in FTM TPC.
local
low complexity
qualcomm CWE-787
7.8
2023-09-05 CVE-2023-28567 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while handling command through WMI interfaces.
local
low complexity
qualcomm CWE-787
7.8
2023-09-05 CVE-2023-28573 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN HAL while parsing WMI command parameters.
local
low complexity
qualcomm CWE-787
7.8
2023-09-05 CVE-2023-28581 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE.
network
low complexity
qualcomm CWE-787
critical
9.8
2023-09-05 CVE-2023-33015 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.
network
low complexity
qualcomm CWE-125
7.5
2023-09-05 CVE-2023-33021 Use After Free vulnerability in Qualcomm products
Memory corruption in Graphics while processing user packets for command submission.
local
low complexity
qualcomm CWE-416
7.8
2023-08-08 CVE-2023-28575 Type Confusion vulnerability in Qualcomm products
The cam_get_device_priv function does not check the type of handle being returned (device/session/link).
local
low complexity
qualcomm CWE-843
7.8