Vulnerabilities > Qualcomm > Wsa8835 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-03 | CVE-2024-38426 | Improper Authentication vulnerability in Qualcomm products While processing the authentication message in UE, improper authentication may lead to information disclosure. | 5.3 |
| 2025-03-03 | CVE-2024-43051 | Improper Authorization vulnerability in Qualcomm products Information disclosure while deriving keys for a session for any Widevine use case. | 5.5 |
| 2025-03-03 | CVE-2024-43055 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption while processing camera use case IOCTL call. | 7.8 |
| 2025-03-03 | CVE-2024-43056 | Buffer Over-read vulnerability in Qualcomm products Transient DOS during hypervisor virtual I/O operation in a virtual machine. | 6.5 |
| 2025-03-03 | CVE-2024-43057 | Use After Free vulnerability in Qualcomm products Memory corruption while processing command in Glink linux. | 7.8 |
| 2025-03-03 | CVE-2024-43059 | Use After Free vulnerability in Qualcomm products Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node. | 7.8 |
| 2025-03-03 | CVE-2024-43060 | Use of Out-of-range Pointer Offset vulnerability in Qualcomm products Memory corruption during voice activation, when sound model parameters are loaded from HLOS to ADSP. | 7.8 |
| 2025-03-03 | CVE-2024-43061 | Use After Free vulnerability in Qualcomm products Memory corruption during voice activation, when sound model parameters are loaded from HLOS, and the received sound model list is empty in HLOS drive. | 7.8 |
| 2025-03-03 | CVE-2024-43062 | Use After Free vulnerability in Qualcomm products Memory corruption caused by missing locks and checks on the DMA fence and improper synchronization. | 7.8 |
| 2025-03-03 | CVE-2024-45580 | Use After Free vulnerability in Qualcomm products Memory corruption while handling multuple IOCTL calls from userspace for remote invocation. | 7.8 |