Vulnerabilities > Qualcomm > Wcn6856 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-03-10 CVE-2022-33260 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption due to stack based buffer overflow in core while sending command from USB of large size.
local
low complexity
qualcomm CWE-787
7.8
2023-03-10 CVE-2022-33272 Reachable Assertion vulnerability in Qualcomm products
Transient DOS in modem due to reachable assertion.
network
low complexity
qualcomm CWE-617
7.5
2023-03-10 CVE-2022-33278 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.
local
low complexity
qualcomm CWE-120
7.8
2023-03-10 CVE-2022-33309 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.
network
low complexity
qualcomm CWE-125
7.5
2023-03-10 CVE-2022-40527 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.
network
low complexity
qualcomm CWE-617
7.5
2023-03-10 CVE-2022-40530 Integer Overflow or Wraparound vulnerability in Qualcomm products
Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
local
low complexity
qualcomm CWE-190
7.8
2023-03-10 CVE-2022-40531 Incorrect Type Conversion or Cast vulnerability in Qualcomm products
Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
local
low complexity
qualcomm CWE-704
7.8
2023-03-10 CVE-2022-40540 Classic Buffer Overflow vulnerability in Qualcomm products
Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.
local
low complexity
qualcomm CWE-120
7.8
2023-02-12 CVE-2022-25728 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem due to buffer over-read while processing response from DNS server
network
low complexity
qualcomm CWE-125
7.5
2023-02-12 CVE-2022-25732 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem due to buffer over read in dns client due to missing length check
network
low complexity
qualcomm CWE-125
7.5