Vulnerabilities > Qualcomm > Wcd9370 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2024-11-04 CVE-2024-38410 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while IOCLT is called when device is in invalid state and the WMI command buffer may be freed twice.
local
low complexity
qualcomm CWE-787
7.8
2024-11-04 CVE-2024-38415 Use After Free vulnerability in Qualcomm products
Memory corruption while handling session errors from firmware.
local
low complexity
qualcomm CWE-416
7.8
2024-11-04 CVE-2024-38419 Use After Free vulnerability in Qualcomm products
Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node.
local
low complexity
qualcomm CWE-416
7.8
2024-11-04 CVE-2024-38421 Use After Free vulnerability in Qualcomm products
Memory corruption while processing GPU commands.
local
low complexity
qualcomm CWE-416
7.8
2024-11-04 CVE-2024-38422 Unspecified vulnerability in Qualcomm products
Memory corruption while processing voice packet with arbitrary data received from ADSP.
local
low complexity
qualcomm
7.8
2024-11-04 CVE-2024-38423 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption while processing GPU page table switch.
local
low complexity
qualcomm CWE-120
7.8
2024-11-04 CVE-2024-38424 Use After Free vulnerability in Qualcomm products
Memory corruption during GNSS HAL process initialization.
local
low complexity
qualcomm CWE-416
7.8
2024-10-07 CVE-2024-21455 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption when a compat IOCTL call is followed by another IOCTL call from userspace to a driver.
local
low complexity
qualcomm CWE-119
7.8
2024-10-07 CVE-2024-23369 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products
Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
local
low complexity
qualcomm CWE-119
7.8
2024-10-07 CVE-2024-33049 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
network
low complexity
qualcomm CWE-125
7.5