Vulnerabilities > Qualcomm > Wcn7851 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-10 | CVE-2022-40531 | Incorrect Type Conversion or Cast vulnerability in Qualcomm products Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message. | 7.8 |
| 2023-03-10 | CVE-2022-40537 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response. | 9.8 |
| 2023-03-10 | CVE-2022-40540 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel. | 7.8 |
| 2023-02-12 | CVE-2022-25728 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in modem due to buffer over-read while processing response from DNS server | 7.5 |
| 2023-02-12 | CVE-2022-25729 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption in modem due to improper length check while copying into memory | 9.8 |
| 2023-02-12 | CVE-2022-25732 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in modem due to buffer over read in dns client due to missing length check | 7.5 |
| 2023-02-12 | CVE-2022-25733 | NULL Pointer Dereference vulnerability in Qualcomm products Denial of service in modem due to null pointer dereference while processing DNS packets | 7.5 |
| 2023-02-12 | CVE-2022-25734 | Infinite Loop vulnerability in Qualcomm products Denial of service in modem due to missing null check while processing IP packets with padding | 7.5 |
| 2023-02-12 | CVE-2022-25735 | NULL Pointer Dereference vulnerability in Qualcomm products Denial of service in modem due to missing null check while processing TCP or UDP packets from server | 7.5 |
| 2023-02-12 | CVE-2022-25738 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in modem due to buffer over-red while performing checksum of packet received | 7.5 |