Vulnerabilities > Qualcomm > Wsa8835 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-06 | CVE-2024-45577 | Improper Input Validation vulnerability in Qualcomm products Memory corruption while invoking IOCTL calls from userspace to camera kernel driver to dump request information. | 7.8 |
| 2025-05-06 | CVE-2024-45578 | Improper Validation of Array Index vulnerability in Qualcomm products Memory corruption while acquire and update IOCTLs during IFE output resource ID validation. | 7.8 |
| 2025-05-06 | CVE-2024-45579 | Improper Input Validation vulnerability in Qualcomm products Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver to dump request information, due to a missing memory requirement check. | 7.8 |
| 2025-05-06 | CVE-2024-49829 | Classic Buffer Overflow vulnerability in Qualcomm products Memory corruption can occur during context user dumps due to inadequate checks on buffer length. | 7.8 |
| 2025-05-06 | CVE-2024-49835 | Out-of-bounds Write vulnerability in Qualcomm products Memory corruption while reading secure file. | 7.8 |
| 2025-05-06 | CVE-2024-49841 | Detection of Error Condition Without Action vulnerability in Qualcomm products Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling. | 7.8 |
| 2025-05-06 | CVE-2024-49842 | Improper Access Control vulnerability in Qualcomm products Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions. | 7.8 |
| 2025-05-06 | CVE-2024-49844 | Improper Input Validation vulnerability in Qualcomm products Memory corruption while triggering commands in the PlayReady Trusted application. | 7.8 |
| 2025-05-06 | CVE-2024-49845 | Improper Input Validation vulnerability in Qualcomm products Memory corruption during the FRS UDS generation process. | 7.8 |
| 2025-05-06 | CVE-2024-49847 | Buffer Over-read vulnerability in Qualcomm products Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key data IE. | 7.5 |