Vulnerabilities > Qualcomm > Wcd9335 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-06-06 CVE-2023-21670 Incorrect Authorization vulnerability in Qualcomm products
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
local
low complexity
qualcomm CWE-863
7.8
2023-05-02 CVE-2022-40504 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
network
low complexity
qualcomm CWE-617
7.5
2023-05-02 CVE-2022-33304 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet.
network
low complexity
qualcomm CWE-476
7.5
2023-05-02 CVE-2022-33305 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.
network
low complexity
qualcomm CWE-476
7.5
2023-05-02 CVE-2023-21665 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory corruption in Graphics while importing a file.
local
low complexity
qualcomm CWE-704
7.8
2023-05-02 CVE-2023-21666 Memory Leak vulnerability in Qualcomm products
Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.
local
low complexity
qualcomm CWE-401
7.8
2023-04-13 CVE-2022-33231 Double Free vulnerability in Qualcomm products
Memory corruption due to double free in core while initializing the encryption key.
local
low complexity
qualcomm CWE-415
7.8
2023-04-13 CVE-2022-33287 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in Modem due to buffer over-read while getting length of Unfragmented headers in an IPv6 packet.
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33291 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in Modem due to buffer over-read while receiving a IP header with malformed length.
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-33296 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message.
local
low complexity
qualcomm CWE-190
7.8