Vulnerabilities > Qualcomm > Wcn785X 5 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2023-06-06 CVE-2023-21670 Incorrect Authorization vulnerability in Qualcomm products
Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
local
low complexity
qualcomm CWE-863
7.8
2023-05-02 CVE-2022-40504 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
network
low complexity
qualcomm CWE-617
7.5
2023-05-02 CVE-2022-33281 Improper Validation of Array Index vulnerability in Qualcomm products
Memory corruption due to improper validation of array index in computer vision while testing EVA kernel without sending any frames.
local
low complexity
qualcomm CWE-129
7.8
2023-05-02 CVE-2022-33304 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS due to NULL pointer dereference in Modem while performing pullup for received TCP/UDP packet.
network
low complexity
qualcomm CWE-476
7.5
2023-05-02 CVE-2022-33305 NULL Pointer Dereference vulnerability in Qualcomm products
Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.
network
low complexity
qualcomm CWE-476
7.5
2023-05-02 CVE-2022-34144 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem during OSI decode scheduling.
network
low complexity
qualcomm CWE-617
7.5
2023-05-02 CVE-2022-40508 Reachable Assertion vulnerability in Qualcomm products
Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported.
network
low complexity
qualcomm CWE-617
7.5
2023-04-13 CVE-2022-25726 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-25730 Out-of-bounds Read vulnerability in Qualcomm products
Information disclosure in modem due to improper check of IP type while processing DNS server query
network
low complexity
qualcomm CWE-125
7.5
2023-04-13 CVE-2022-25739 NULL Pointer Dereference vulnerability in Qualcomm products
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call
network
low complexity
qualcomm CWE-476
7.5