CPE Details
Qualcomm SM7150-AA Firmware
-
2023-04-20 09:34 +00:00
2023-08-29 09:33 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
CPE Name: cpe:2.3:o:qualcomm:sm7150-aa_firmware:-:*:*:*:*:*:*:*
Informations
Vendor
qualcommProduct
sm7150-aa_firmwareVersion
-Related CVE
| CVE ID | Published | Description | Score | Severity |
|---|---|---|---|---|
| Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released. | 8.4 |
HIGH |
||
| Memory corruption when allocating and accessing an entry in an SMEM partition. | 7.8 |
HIGH |
||
| Memory corruption while processing key blob passed by the user. | 7.8 |
HIGH |
||
| Transient DOS while loading the TA ELF file. | 7.1 |
HIGH |
||
| Memory corruption while performing finish HMAC operation when context is freed by keymaster. | 8.4 |
HIGH |
||
| Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame. | 7.5 |
HIGH |
||
| Transient DOS in Automotive OS due to improper authentication to the secure IO calls. | 7.1 |
HIGH |
||
| Memory corruption in DSP Services during a remote call from HLOS to DSP. | 7.8 |
HIGH |
||
| Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data. | 9.1 |
CRITICAL |
||
| Memory corruption in HLOS while invoking IOCTL calls from user-space. | 8.4 |
HIGH |
||
| Memory corruption while using the UIM diag command to get the operators name. | 7.8 |
HIGH |
||
| Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. | 7.8 |
HIGH |
||
| Memory corruption in Audio while processing the VOC packet data from ADSP. | 7.8 |
HIGH |
||
| Transient DOS in WLAN Firmware while parsing rsn ies. | 7.5 |
HIGH |
||
| Cryptographic issue in Data Modem due to improper authentication during TLS handshake. | 9.1 |
CRITICAL |
||
| Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application. | 7.8 |
HIGH |
||
| Information Disclosure in data Modem while parsing an FMTP line in an SDP message. | 8.2 |
HIGH |
||
| Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. | 8.2 |
HIGH |
||
| Transient DOS in Modem while allocating DSM items. | 7.5 |
HIGH |
||
| Memory Corruption in Data Modem while making a MO call or MT VOLTE call. | 9.8 |
CRITICAL |
||
| Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload. | 7.8 |
HIGH |
||
| Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range. | 8.4 |
HIGH |
||
| Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode. | 7.8 |
HIGH |
||
| Information Disclosure in WLAN HOST while sending DPP action frame to peer with an invalid source address. | 8.2 |
HIGH |
||
| Transient DOS in WLAN Firmware while processing frames with missing header fields. | 7.5 |
HIGH |
||
| Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command. | 8.4 |
HIGH |
||
| Memory corruption due to improper access control in kernel while processing a mapping request from root process. | 7.8 |
HIGH |
||
| Information disclosure in Kernel due to indirect branch misprediction. | 7.1 |
HIGH |
||
| Transient DOS due to improper authorization in Modem | 7.5 |
HIGH |
||
| Memory corruption due to double free in Core while mapping HLOS address to the list. | 8.4 |
HIGH |
||
| Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message. | 7.9 |
HIGH |
||
| information disclosure due to cryptographic issue in Core during RPMB read request. | 7.1 |
HIGH |
||
| Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network. | 7.5 |
HIGH |
||
| Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool. | 8.4 |
HIGH |
||
| Memory corruption in Graphics while importing a file. | 8.4 |
HIGH |
||
| Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target. | 8.4 |
HIGH |
||
| Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming. | 8.2 |
HIGH |
||
| Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length. | 7.8 |
HIGH |
||
| Memory corruption due to use after free in Modem while modem initialization. | 7.8 |
HIGH |
||
| Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message. | 7.8 |
HIGH |
||
| Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card. | 6.8 |
MEDIUM |
||
| Memory corruption due to double free in core while initializing the encryption key. | 9.3 |
CRITICAL |
2024©
tesweb SA
