Vulnerabilities > Qualcomm > Wcn3680B Firmware > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-12-02 | CVE-2024-33036 | Use of Out-of-range Pointer Offset vulnerability in Qualcomm products Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access. | 6.7 |
2024-12-02 | CVE-2024-33037 | Buffer Over-read vulnerability in Qualcomm products Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware. | 6.1 |
2024-12-02 | CVE-2024-33053 | Use After Free vulnerability in Qualcomm products Memory corruption when multiple threads try to unregister the CVP buffer at the same time. | 6.7 |
2024-11-04 | CVE-2024-23385 | Reachable Assertion vulnerability in Qualcomm products Transient DOS as modem reset occurs when an unexpected MAC RAR (with invalid PDU length) is seen at UE. | 6.5 |
2024-11-04 | CVE-2024-33032 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it. | 6.7 |
2024-11-04 | CVE-2024-38403 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while parsing BTM ML IE when per STA profile is not included. | 6.5 |
2024-10-07 | CVE-2024-23375 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption during the network scan request. | 6.7 |
2024-09-02 | CVE-2024-33043 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS while handling PS event when Program Service name length offset value is set to 255. | 5.5 |
2024-08-05 | CVE-2024-23357 | NULL Pointer Dereference vulnerability in Qualcomm products Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus. | 5.5 |
2023-12-05 | CVE-2023-28586 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE. | 6.5 |