Vulnerabilities > Qualcomm > Srv1M Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2024-09-02 CVE-2024-33050 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33051 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33057 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the multi-link element Control field when common information length check is missing before updating the location.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33060 Use After Free vulnerability in Qualcomm products
Memory corruption when two threads try to map and unmap a single node simultaneously.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-38402 Use After Free vulnerability in Qualcomm products
Memory corruption while processing IOCTL call for getting group info.
local
low complexity
qualcomm CWE-416
7.8
2024-08-05 CVE-2024-33021 Use of Uninitialized Resource vulnerability in Qualcomm products
Memory corruption while processing IOCTL call to set metainfo.
local
low complexity
qualcomm CWE-908
7.8
2024-08-05 CVE-2024-33022 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption while allocating memory in HGSL driver.
local
low complexity
qualcomm CWE-190
7.8
2024-08-05 CVE-2024-33023 Use After Free vulnerability in Qualcomm products
Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
local
low complexity
qualcomm CWE-416
7.8
2024-08-05 CVE-2024-33028 Use After Free vulnerability in Qualcomm products
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
local
low complexity
qualcomm CWE-416
7.8
2024-08-05 CVE-2024-33034 Use After Free vulnerability in Qualcomm products
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
local
low complexity
qualcomm CWE-416
7.8