Vulnerabilities > Qualcomm > Wcd9380 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-10-07 CVE-2024-23374 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption is possible when an attempt is made from userspace or console to write some haptics effects pattern to the haptics debugfs file.
local
low complexity
qualcomm CWE-787
6.7
2024-10-07 CVE-2024-23376 Use After Free vulnerability in Qualcomm products
Memory corruption while sending the persist buffer command packet from the user-space to the kernel space through the IOCTL call.
local
low complexity
qualcomm CWE-416
6.7
2024-10-07 CVE-2024-23379 Double Free vulnerability in Qualcomm products
Memory corruption while unmapping the fastrpc map when two threads can free the same map in concurrent scenario.
local
low complexity
qualcomm CWE-415
6.7
2024-10-07 CVE-2024-33049 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing noninheritance IE of Extension element when length of IE is 2 of beacon frame.
network
low complexity
qualcomm CWE-125
7.5
2024-10-07 CVE-2024-33065 Unspecified vulnerability in Qualcomm products
Memory corruption while taking snapshot when an offset variable is set by camera driver.
local
low complexity
qualcomm
7.8
2024-10-07 CVE-2024-33069 Use After Free vulnerability in Qualcomm products
Transient DOS when transmission of management frame sent by host is not successful and error status is received in the host.
network
low complexity
qualcomm CWE-416
7.5
2024-10-07 CVE-2024-33073 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
network
low complexity
qualcomm CWE-125
8.2
2024-10-07 CVE-2024-38397 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing probe response and assoc response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-10-07 CVE-2024-38399 Use After Free vulnerability in Qualcomm products
Memory corruption while processing user packets to generate page faults.
local
low complexity
qualcomm CWE-416
7.8
2024-10-07 CVE-2024-38425 Incorrect Authorization vulnerability in Qualcomm products
Information disclosure while sending implicit broadcast containing APP launch information.
local
low complexity
qualcomm CWE-863
6.1