Vulnerabilities > Qualcomm > Wcd9385 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2024-07-01 CVE-2024-23372 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.
local
low complexity
qualcomm CWE-190
7.8
2024-07-01 CVE-2024-23373 Use After Free vulnerability in Qualcomm products
Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
local
low complexity
qualcomm CWE-416
7.8
2024-07-01 CVE-2024-23380 Use After Free vulnerability in Qualcomm products
Memory corruption while handling user packets during VBO bind operation.
local
low complexity
qualcomm CWE-416
7.8
2024-02-06 CVE-2023-33067 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.
local
low complexity
qualcomm CWE-787
7.8
2024-02-06 CVE-2023-33068 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption in Audio while processing IIR config data from AFE calibration block.
local
low complexity
qualcomm CWE-120
7.8
2024-02-06 CVE-2023-33069 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption in Audio while processing the calibration data returned from ACDB loader.
local
low complexity
qualcomm CWE-120
7.8
2024-02-06 CVE-2023-33072 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption in Core while processing control functions.
local
low complexity
qualcomm CWE-120
7.8
2024-02-06 CVE-2023-33076 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.
local
low complexity
qualcomm CWE-787
7.8
2024-02-06 CVE-2023-43532 Release of Invalid Pointer or Reference vulnerability in Qualcomm products
Memory corruption while reading ACPI config through the user mode app.
local
low complexity
qualcomm CWE-763
7.8
2024-02-06 CVE-2023-43535 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption when negative display IDs are sent as input while processing DISPLAYESCAPE event trigger.
local
low complexity
qualcomm CWE-129
7.8