Vulnerabilities > Qualcomm > Wcd9370 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-06 | CVE-2025-21459 | Buffer Over-read vulnerability in Qualcomm products Transient DOS while parsing per STA profile in ML IE. | 7.5 |
| 2025-05-06 | CVE-2025-21467 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while reading the FW response from the shared queue. | 7.8 |
| 2025-05-06 | CVE-2025-21468 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer. | 7.8 |
| 2025-05-06 | CVE-2025-21469 | Improper Access Control vulnerability in Qualcomm products Memory corruption while processing image encoding, when input buffer length is 0 in IOCTL call. | 7.8 |
| 2025-05-06 | CVE-2025-21470 | Improper Access Control vulnerability in Qualcomm products Memory corruption while processing image encoding, when configuration is NULL in IOCTL parameter. | 7.8 |
| 2025-05-06 | CVE-2025-21475 | Buffer Over-read vulnerability in Qualcomm products Memory corruption while processing escape code, when DisplayId is passed with large unsigned value. | 7.8 |
| 2025-03-03 | CVE-2024-43057 | Use After Free vulnerability in Qualcomm products Memory corruption while processing command in Glink linux. | 7.8 |
| 2025-03-03 | CVE-2024-53014 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption may occur while validating ports and channels in Audio driver. | 7.8 |
| 2025-03-03 | CVE-2024-53023 | Use After Free vulnerability in Qualcomm products Memory corruption may occur while accessing a variable during extended back to back tests. | 7.8 |
| 2025-03-03 | CVE-2024-53024 | NULL Pointer Dereference vulnerability in Qualcomm products Memory corruption in display driver while detaching a device. | 7.8 |