Vulnerabilities > Qualcomm > Wcd9385 Firmware

DATE CVE VULNERABILITY TITLE RISK
2025-01-06 CVE-2024-45542 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.
local
low complexity
qualcomm CWE-787
7.8
2025-01-06 CVE-2024-45546 Out-of-bounds Read vulnerability in Qualcomm products
Memory corruption while processing FIPS encryption or decryption IOCTL call invoked from user-space.
local
low complexity
qualcomm CWE-125
7.8
2025-01-06 CVE-2024-45547 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption while processing IOCTL call invoked from user-space to verify non extension FIPS encryption and decryption functionality.
local
low complexity
qualcomm CWE-120
7.8
2025-01-06 CVE-2024-45548 Out-of-bounds Read vulnerability in Qualcomm products
Memory corruption while processing FIPS encryption or decryption validation functionality IOCTL call.
local
low complexity
qualcomm CWE-125
7.8
2025-01-06 CVE-2024-45550 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption occurs when invoking any IOCTL-calling application that executes all MCDM driver IOCTL calls.
local
low complexity
qualcomm CWE-129
7.8
2025-01-06 CVE-2024-45553 Use After Free vulnerability in Qualcomm products
Memory corruption can occur when process-specific maps are added to the global list.
local
low complexity
qualcomm CWE-416
7.8
2025-01-06 CVE-2024-45558 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.
network
low complexity
qualcomm CWE-125
7.5
2024-12-02 CVE-2024-33044 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
local
low complexity
qualcomm CWE-129
7.8
2024-12-02 CVE-2024-33053 Use After Free vulnerability in Qualcomm products
Memory corruption when multiple threads try to unregister the CVP buffer at the same time.
local
low complexity
qualcomm CWE-416
6.7
2024-12-02 CVE-2024-33063 Integer Overflow or Wraparound vulnerability in Qualcomm products
Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.
network
low complexity
qualcomm CWE-190
7.5