Vulnerabilities > Qualcomm > Wsa8832 Firmware > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-06-06 | CVE-2022-40523 | Exposure of Resource to Wrong Sphere vulnerability in Qualcomm products Information disclosure in Kernel due to indirect branch misprediction. | 5.5 |
2023-06-06 | CVE-2022-40533 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Qualcomm products Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request. | 5.5 |
2023-05-02 | CVE-2022-33273 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation. | 5.5 |
2023-02-12 | CVE-2022-33221 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in Trusted Execution Environment due to buffer over-read while processing metadata verification requests. | 5.5 |
2022-09-16 | CVE-2022-25653 | Out-of-bounds Read vulnerability in Qualcomm products Information disclosure in video due to buffer over-read while processing avi file in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables | 5.5 |
2022-09-02 | CVE-2021-35108 | Improper Check for Unusual or Exceptional Conditions vulnerability in Qualcomm products Improper checking of AP-S lock bit while verifying the secure resource group permissions can lead to non secure read and write access in Snapdragon Connectivity, Snapdragon Mobile | 6.8 |
2022-09-02 | CVE-2021-35109 | Improper Input Validation vulnerability in Qualcomm products Possible address manipulation from APP-NS while APP-S is configuring an RG where it tries to merge the address ranges in Snapdragon Connectivity, Snapdragon Mobile | 6.8 |
2022-09-02 | CVE-2021-35133 | Use After Free vulnerability in Qualcomm products Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile | 6.7 |
2022-06-14 | CVE-2021-35111 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Qualcomm products Improper validation of tag id while RRC sending tag id to MAC can lead to TOCTOU race condition in Snapdragon Connectivity, Snapdragon Mobile | 5.9 |
2022-06-14 | CVE-2021-35118 | Out-of-bounds Write vulnerability in Qualcomm products An out-of-bounds write can occur due to an incorrect input check in the camera driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | 6.7 |