CPE Details
Qualcomm Snapdragon X72 5G MODEM-RF FIRMWARE
-
2024-10-09
13h04 +00:00
13h04 +00:00
2024-10-09
13h04 +00:00
13h04 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
CPE Name: cpe:2.3:o:qualcomm:snapdragon_x72_5g_modem-rf_firmware:-:*:*:*:*:*:*:*
Informations
Vendor
qualcommProduct
snapdragon_x72_5g_modem-rf_firmwareVersion
-Related CVE
| CVE ID | Publié | Description | Score | Gravité |
|---|---|---|---|---|
| Memory corruption during management frame processing due to mismatch in T2LM info element. | 9.8 |
Critique |
||
| Information disclosure while parsing the OCI IE with invalid length. | 8.2 |
Haute |
||
| Memory corruption can occur when a compat IOCTL call is followed by a normal IOCTL call from userspace. | 7.8 |
Haute |
||
| Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface. | 7.8 |
Haute |
||
| Memory corruption while parsing the ML IE due to invalid frame content. | 9.8 |
Critique |
||
| Memory corruption while configuring a Hypervisor based input virtual device. | 8.8 |
Haute |
||
| Information disclosure while processing IO control commands. | 6.1 |
Moyen |
||
| Information disclosure during audio playback. | 6.1 |
Moyen |
||
| Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length. | 7.5 |
Haute |
||
| Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise. | 7.8 |
Haute |
||
| Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver. | 6.1 |
Moyen |
||
| Memory corruption while processing IOCTL call for getting group info. | 7.8 |
Haute |
||
| Memory corruption while playing audio file having large-sized input buffer. | 9.8 |
Critique |
||
| Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame. | 7.5 |
Haute |
||
| Memory corruption when the payload received from firmware is not as per the expected protocol size. | 7.8 |
Haute |
||
| Memory corruption while verifying the serialized header when the key pairs are generated. | 8.4 |
Haute |
||
| Memory corruption in HLOS while checking for the storage type. | 7.8 |
Haute |
||
| Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is received. | 7.5 |
Haute |
||
| Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size. | 6.1 |
Moyen |
||
| Memory corruption while querying module parameters from Listen Sound model client in kernel from user space. | 7.8 |
Haute |
||
| Memory corruption while copying the sound model data from user to kernel buffer during sound model register. | 7.8 |
Haute |
||
| Memory corruption when the bandpass filter order received from AHAL is not within the expected range. | 7.8 |
Haute |
||
| Memory corruption when multiple listeners are being registered with the same file descriptor. | 7.8 |
Haute |
||
| Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache. | 8.4 |
Haute |
Les informations affichées sur CVE Find proviennent de plusieurs sources de référence rigoureusement sélectionnées. Les données CVE sont fournies par MITRE Corporation et la National Vulnerability Database (NVD). Le catalogue des vulnérabilités activement exploitées (KEV) provient de la Cybersecurity and Infrastructure Security Agency (CISA), tandis que les scores EPSS sont issus de FIRST.org. Enfin, les données relatives aux faiblesses logicielles (CWE) et aux schémas d'attaque courants (CAPEC)
sont maintenues par MITRE Corporation, et les informations sur les configurations
logicielles et matérielles (CPE) proviennent du NVD.