Vulnerabilities > Qualcomm > Wcd9370 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-06-06 CVE-2023-21657 Improper Input Validation vulnerability in Qualcomm products
Memoru corruption in Audio when ADSP sends input during record use case.
local
low complexity
qualcomm CWE-20
7.8
2023-06-06 CVE-2023-21658 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.
network
low complexity
qualcomm CWE-125
7.5
2023-06-06 CVE-2023-21659 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware while processing frames with missing header fields.
network
low complexity
qualcomm CWE-125
7.5
2023-06-06 CVE-2023-21660 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware while parsing FT Information Elements.
network
low complexity
qualcomm CWE-125
7.5
2023-06-06 CVE-2023-21661 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing WLAN beacon or probe-response frame.
network
low complexity
qualcomm CWE-125
7.5
2023-06-06 CVE-2023-21669 Out-of-bounds Read vulnerability in Qualcomm products
Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address.
network
low complexity
qualcomm CWE-125
7.5
2023-06-06 CVE-2023-21670 Incorrect Authorization vulnerability in Qualcomm products
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
local
low complexity
qualcomm CWE-863
7.8
2023-05-02 CVE-2022-40504 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
network
low complexity
qualcomm CWE-617
7.5
2023-05-02 CVE-2022-33292 Use After Free vulnerability in Qualcomm products
Memory corruption in Qualcomm IPC due to use after free while receiving the incoming packet and reposting it.
local
low complexity
qualcomm CWE-416
7.8
2023-05-02 CVE-2022-33305 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.
network
low complexity
qualcomm CWE-476
7.5