Vulnerabilities > Qualcomm > Wcd9385 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-02-12 CVE-2022-34146 Improper Input Validation vulnerability in Qualcomm products
Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation.
network
low complexity
qualcomm CWE-20
7.5
2023-02-12 CVE-2022-40502 Improper Input Validation vulnerability in Qualcomm products
Transient DOS due to improper input validation in WLAN Host.
network
low complexity
qualcomm CWE-20
7.5
2023-02-12 CVE-2022-40512 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
network
low complexity
qualcomm CWE-125
7.5
2023-02-12 CVE-2022-40513 Resource Exhaustion vulnerability in Qualcomm products
Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos state.
network
low complexity
qualcomm CWE-400
7.5
2023-01-09 CVE-2022-22088 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote
low complexity
qualcomm CWE-787
8.8
2023-01-09 CVE-2022-25716 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products
Memory corruption in Multimedia Framework due to unsafe access to the data members
local
high complexity
qualcomm CWE-367
7.0
2023-01-09 CVE-2022-25746 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping.
local
low complexity
qualcomm CWE-120
7.8
2023-01-09 CVE-2022-33266 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.
local
low complexity
qualcomm CWE-190
7.8
2023-01-09 CVE-2022-33276 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.
local
low complexity
qualcomm CWE-120
7.8
2023-01-09 CVE-2022-33300 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Automotive Android OS due to improper input validation.
local
low complexity
qualcomm CWE-787
7.8