Vulnerabilities > Qualcomm > Wcn3980 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-09-05 CVE-2023-33020 Unspecified vulnerability in Qualcomm products
Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.
network
low complexity
qualcomm
7.5
2023-09-05 CVE-2023-33021 Use After Free vulnerability in Qualcomm products
Memory corruption in Graphics while processing user packets for command submission.
local
low complexity
qualcomm CWE-416
7.8
2023-08-08 CVE-2023-21625 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in Network Services due to buffer over-read while the device receives DNS response.
network
low complexity
qualcomm CWE-125
7.5
2023-08-08 CVE-2023-21626 Improper Authentication vulnerability in Qualcomm products
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
local
low complexity
qualcomm CWE-287
7.1
2023-08-08 CVE-2023-21627 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory corruption in Trusted Execution Environment while calling service API with invalid address.
local
low complexity
qualcomm CWE-704
7.8
2023-08-08 CVE-2023-21648 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in RIL while trying to send apdu packet.
local
low complexity
qualcomm CWE-787
7.8
2023-08-08 CVE-2023-21649 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption in WLAN while running doDriverCmd for an unspecific command.
local
low complexity
qualcomm CWE-787
7.8
2023-08-08 CVE-2023-21650 Out-of-bounds Write vulnerability in Qualcomm products
Memory Corruption in GPS HLOS Driver when injectFdclData receives data with invalid data length.
local
low complexity
qualcomm CWE-787
7.8
2023-08-08 CVE-2023-21651 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
local
low complexity
qualcomm CWE-704
7.8
2023-08-08 CVE-2023-21652 Use of Hard-coded Credentials vulnerability in Qualcomm products
Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
local
low complexity
qualcomm CWE-798
7.1