Vulnerabilities > Qualcomm > Wsa8835 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-10-07 CVE-2024-38397 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing probe response and assoc response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-10-07 CVE-2024-38399 Use After Free vulnerability in Qualcomm products
Memory corruption while processing user packets to generate page faults.
local
low complexity
qualcomm CWE-416
7.8
2024-10-07 CVE-2024-38425 Incorrect Authorization vulnerability in Qualcomm products
Information disclosure while sending implicit broadcast containing APP launch information.
local
low complexity
qualcomm CWE-863
6.1
2024-10-07 CVE-2024-43047 Use After Free vulnerability in Qualcomm products
Memory corruption while maintaining memory maps of HLOS memory.
local
low complexity
qualcomm CWE-416
7.8
2024-09-02 CVE-2024-33038 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33042 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when Alternative Frequency offset value is set to 255.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33045 Out-of-bounds Write vulnerability in Qualcomm products
Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
local
low complexity
qualcomm CWE-787
7.8
2024-09-02 CVE-2024-33047 Out-of-bounds Read vulnerability in Qualcomm products
Memory corruption when the captureRead QDCM command is invoked from user-space.
local
low complexity
qualcomm CWE-125
7.8
2024-09-02 CVE-2024-33048 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing the received TID-to-link mapping element of beacon/probe response frame.
network
low complexity
qualcomm CWE-125
7.5
2024-09-02 CVE-2024-33050 Out-of-bounds Read vulnerability in Qualcomm products
Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
network
low complexity
qualcomm CWE-125
7.5