Vulnerabilities > Qualcomm > Wcn3988 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-02-03 | CVE-2024-38417 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure while processing IO control commands. | 5.5 |
| 2025-02-03 | CVE-2024-38418 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Memory corruption while parsing the memory map info in IOCTL calls. | 7.0 |
| 2025-02-03 | CVE-2024-45584 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace. | 7.8 |
| 2025-02-03 | CVE-2024-49833 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption can occur in the camera when an invalid CID is used. | 7.8 |
| 2025-02-03 | CVE-2024-49834 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption while power-up or power-down sequence of the camera sensor. | 7.8 |
| 2025-02-03 | CVE-2024-49838 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure while parsing the OCI IE with invalid length. | 7.5 |
| 2025-02-03 | CVE-2024-49843 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption while processing IOCTL from user space to handle GPU AHB bus error. | 7.8 |
| 2025-01-06 | CVE-2024-33061 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure while processing IOCTL call made for releasing a trusted VM process release or opening a channel without initializing the process. | 5.5 |
| 2025-01-06 | CVE-2024-45553 | Use After Free vulnerability in Qualcomm products Memory corruption can occur when process-specific maps are added to the global list. | 7.8 |
| 2025-01-06 | CVE-2024-45558 | Out-of-bounds Read vulnerability in Qualcomm products Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. | 7.5 |