Vulnerabilities > Qualcomm > Wcn3620 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-03 | CVE-2024-38404 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in modem. | 7.5 |
| 2025-02-03 | CVE-2024-38418 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption while parsing the memory map info in IOCTL calls. | 7.0 |
| 2025-02-03 | CVE-2024-45560 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption while taking a snapshot with hardware encoder due to unvalidated userspace buffer. | 7.0 |
| 2025-02-03 | CVE-2024-45561 | Use After Free vulnerability in Qualcomm products Memory corruption while handling IOCTL call from user-space to set latency level. | 7.8 |
| 2025-02-03 | CVE-2024-45573 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption may occour while generating test pattern due to negative indexing of display ID. | 7.8 |
| 2025-02-03 | CVE-2024-49832 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption in Camera due to unusually high number of nodes passed to AXI port. | 7.8 |
| 2025-02-03 | CVE-2024-49834 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption while power-up or power-down sequence of the camera sensor. | 7.8 |
| 2024-12-02 | CVE-2024-33044 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption while Configuring the SMR/S2CR register in Bypass mode. | 7.8 |
| 2024-12-02 | CVE-2024-33063 | Integer Overflow or Wraparound vulnerability in Qualcomm products Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present. | 7.5 |
| 2024-12-02 | CVE-2024-43048 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption when invalid input is passed to invoke GPU Headroom API call. | 7.8 |