Vulnerabilities > Qualcomm > Wcn3610 Firmware

DATE CVE VULNERABILITY TITLE RISK
2025-05-06 CVE-2024-49847 Buffer Over-read vulnerability in Qualcomm products
Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key data IE.
network
low complexity
qualcomm CWE-126
7.5
2025-05-06 CVE-2025-21453 Use After Free vulnerability in Qualcomm products
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
local
low complexity
qualcomm CWE-416
7.8
2025-03-03 CVE-2024-38426 Improper Authentication vulnerability in Qualcomm products
While processing the authentication message in UE, improper authentication may lead to information disclosure.
network
low complexity
qualcomm CWE-287
5.3
2025-03-03 CVE-2024-53027 Classic Buffer Overflow vulnerability in Qualcomm products
Transient DOS may occur while processing the country IE.
network
low complexity
qualcomm CWE-120
7.5
2025-02-03 CVE-2024-38404 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem.
network
low complexity
qualcomm CWE-125
7.5
2024-12-02 CVE-2024-43052 Unspecified vulnerability in Qualcomm products
Memory corruption while processing API calls to NPU with invalid input.
local
low complexity
qualcomm
7.8
2024-11-04 CVE-2024-23385 Reachable Assertion vulnerability in Qualcomm products
Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE.
network
low complexity
qualcomm CWE-617
6.5
2024-11-04 CVE-2024-33032 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it.
local
low complexity
qualcomm CWE-129
6.7
2024-11-04 CVE-2024-38403 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing BTM ML IE when per STA profile is not included.
network
low complexity
qualcomm CWE-125
6.5
2024-11-04 CVE-2024-38422 Unspecified vulnerability in Qualcomm products
Memory corruption while processing voice packet with arbitrary data received from ADSP.
local
low complexity
qualcomm
7.8