Vulnerabilities > Qualcomm > Wcd9341 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2022-02-11 CVE-2021-30317 Improper Authentication vulnerability in Qualcomm products
Improper validation of program headers containing ELF metadata can lead to image verification bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
local
low complexity
qualcomm CWE-287
7.8
2022-02-11 CVE-2021-30322 Out-of-bounds Write vulnerability in Qualcomm products
Possible out of bounds write due to improper validation of number of GPIOs configured in an internal parameters array in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
local
low complexity
qualcomm CWE-787
7.8
2022-02-11 CVE-2021-30323 Classic Buffer Overflow vulnerability in Qualcomm products
Improper validation of maximum size of data write to EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
local
low complexity
qualcomm CWE-120
7.8
2022-02-11 CVE-2021-30326 Reachable Assertion vulnerability in Qualcomm products
Possible assertion due to improper size validation while processing the DownlinkPreemption IE in an RRC Reconfiguration/RRC Setup message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
network
low complexity
qualcomm CWE-617
7.5
2022-02-11 CVE-2021-35069 Integer Overflow or Wraparound vulnerability in Qualcomm products
Improper validation of data length received from DMA buffer can lead to memory corruption.
local
low complexity
qualcomm CWE-190
7.8
2022-01-13 CVE-2021-30287 Reachable Assertion vulnerability in Qualcomm products
Possible assertion due to improper validation of symbols configured for PDCCH monitoring in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
network
low complexity
qualcomm CWE-617
7.5
2022-01-13 CVE-2021-30301 Resource Exhaustion vulnerability in Qualcomm products
Possible denial of service due to out of memory while processing RRC and NAS OTA message in Snapdragon Auto, Snapdragon Industrial IOT, Snapdragon Mobile
network
low complexity
qualcomm CWE-400
7.5
2022-01-13 CVE-2021-30308 Classic Buffer Overflow vulnerability in Qualcomm products
Possible buffer overflow while printing the HARQ memory partition detail due to improper validation of buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
local
low complexity
qualcomm CWE-120
7.8
2022-01-13 CVE-2021-30311 Improper Validation of Array Index vulnerability in Qualcomm products
Possible heap overflow due to lack of index validation before allocating and writing to heap buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
local
low complexity
qualcomm CWE-129
7.8
2022-01-13 CVE-2021-30319 Integer Overflow or Wraparound vulnerability in Qualcomm products
Possible integer overflow due to improper validation of command length parameters while processing WMI command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
local
low complexity
qualcomm CWE-190
7.8