Qualcomm WCN7850 Firmware

CPE Details

Qualcomm WCN7850 Firmware
-
2021-11-15
13h32 +00:00
2021-11-15
13h35 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:o:qualcomm:wcn7850_firmware:-:*:*:*:*:*:*:*

Informations

Vendor

qualcomm

Product

wcn7850_firmware

Version

-

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-21667 2023-09-05 06h24 +00:00 Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard.
6.5
Moyen
CVE-2023-21664 2023-09-05 06h24 +00:00 Memory Corruption in Core Platform while printing the response buffer in log.
7.8
Haute
CVE-2023-21663 2023-09-05 06h24 +00:00 Memory Corruption while accessing metadata in Display.
7.8
Haute
CVE-2023-21662 2023-09-05 06h24 +00:00 Memory corruption in Core Platform while printing the response buffer in log.
7.8
Haute
CVE-2023-21655 2023-09-05 06h23 +00:00 Memory corruption in Audio while validating and mapping metadata.
7.8
Haute
CVE-2023-21646 2023-09-05 06h23 +00:00 Transient DOS in Modem while processing invalid System Information Block 1.
7.5
Haute
CVE-2022-33220 2023-09-05 06h23 +00:00 Information disclosure in Automotive multimedia due to buffer over-read.
5.5
Moyen
CVE-2023-21652 2023-08-08 09h14 +00:00 Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
7.7
Haute
CVE-2023-21651 2023-08-08 09h14 +00:00 Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
9.3
Critique
CVE-2023-21647 2023-08-08 09h14 +00:00 Information disclosure in Bluetooth when an GATT packet is received due to improper input validation.
6.5
Moyen
CVE-2023-21627 2023-08-08 09h14 +00:00 Memory corruption in Trusted Execution Environment while calling service API with invalid address.
7.8
Haute
CVE-2022-40510 2023-08-08 09h14 +00:00 Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
9.8
Critique
CVE-2022-40540 2023-03-07 04h43 +00:00 Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.
8.4
Haute
CVE-2022-40537 2023-03-07 04h43 +00:00 Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response.
9.8
Critique
CVE-2022-40531 2023-03-07 04h43 +00:00 Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
8.4
Haute
CVE-2022-40530 2023-03-07 04h43 +00:00 Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
8.4
Haute
CVE-2022-40527 2023-03-07 04h43 +00:00 Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.
7.5
Haute
CVE-2022-40515 2023-03-07 04h43 +00:00 Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms.
9.8
Critique
CVE-2022-33309 2023-03-07 04h43 +00:00 Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.
7.5
Haute
CVE-2022-33278 2023-03-07 04h43 +00:00 Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.
7.8
Haute
CVE-2022-33272 2023-03-07 04h43 +00:00 Transient DOS in modem due to reachable assertion.
7.5
Haute
CVE-2022-33260 2023-03-07 04h43 +00:00 Memory corruption due to stack based buffer overflow in core while sending command from USB of large size.
7.8
Haute
CVE-2022-33257 2023-03-07 04h43 +00:00 Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.
9.3
Critique
CVE-2022-33256 2023-03-07 04h43 +00:00 Memory corruption due to improper validation of array index in Multi-mode call processor.
9.8
Critique
CVE-2022-33254 2023-03-07 04h43 +00:00 Transient DOS due to reachable assertion in Modem while processing SIB1 Message.
7.5
Haute
CVE-2022-33250 2023-03-07 04h43 +00:00 Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover.
7.5
Haute
CVE-2022-33244 2023-03-07 04h43 +00:00 Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout
7.5
Haute
CVE-2022-33242 2023-03-07 04h43 +00:00 Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD.
7.8
Haute
CVE-2022-33213 2023-03-07 04h43 +00:00 Memory corruption in modem due to buffer overflow while processing a PPP packet
8.8
Haute
CVE-2022-25709 2023-03-07 04h43 +00:00 Memory corruption in modem due to use of out of range pointer offset while processing qmi msg
8.4
Haute
CVE-2022-25705 2023-03-07 04h43 +00:00 Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
7.8
Haute
CVE-2022-25694 2023-03-07 04h43 +00:00 Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM
8.4
Haute
CVE-2022-22075 2023-03-07 04h43 +00:00 Information Disclosure in Graphics during GPU context switch.
6.2
Moyen
CVE-2022-40514 2023-02-09 06h58 +00:00 Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.
9.8
Critique
CVE-2022-40513 2023-02-09 06h58 +00:00 Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos state.
7.5
Haute
CVE-2022-40512 2023-02-09 06h58 +00:00 Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
7.5
Haute
CVE-2022-40502 2023-02-09 06h58 +00:00 Transient DOS due to improper input validation in WLAN Host.
7.5
Haute
CVE-2022-34146 2023-02-09 06h58 +00:00 Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation.
7.5
Haute
CVE-2022-34145 2023-02-09 06h58 +00:00 Transient DOS due to buffer over-read in WLAN Host while parsing frame information.
7.5
Haute
CVE-2022-33306 2023-02-09 06h58 +00:00 Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.
7.5
Haute
CVE-2022-33277 2023-02-09 06h58 +00:00 Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
8.4
Haute
CVE-2022-33271 2023-02-09 06h58 +00:00 Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
8.2
Haute
CVE-2022-33248 2023-02-09 06h58 +00:00 Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http.
7.8
Haute
CVE-2022-33243 2023-02-09 06h58 +00:00 Memory corruption due to improper access control in Qualcomm IPC.
8.4
Haute
CVE-2022-33233 2023-02-09 06h58 +00:00 Memory corruption due to configuration weakness in modem wile sending command to write protected files.
7.8
Haute
CVE-2022-33232 2023-02-09 06h58 +00:00 Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory.
9.3
Critique
CVE-2022-33221 2023-02-09 06h58 +00:00 Information disclosure in Trusted Execution Environment due to buffer over-read while processing metadata verification requests.
6.8
Moyen
CVE-2022-25738 2023-02-09 06h58 +00:00 Information disclosure in modem due to buffer over-red while performing checksum of packet received
8.2
Haute
CVE-2022-25735 2023-02-09 06h58 +00:00 Denial of service in modem due to missing null check while processing TCP or UDP packets from server
7.5
Haute
CVE-2022-25734 2023-02-09 06h58 +00:00 Denial of service in modem due to missing null check while processing IP packets with padding
7.5
Haute
CVE-2022-25733 2023-02-09 06h58 +00:00 Denial of service in modem due to null pointer dereference while processing DNS packets
7.5
Haute
CVE-2022-25732 2023-02-09 06h58 +00:00 Information disclosure in modem due to buffer over read in dns client due to missing length check
8.2
Haute
CVE-2022-25729 2023-02-09 06h58 +00:00 Memory corruption in modem due to improper length check while copying into memory
9.8
Critique
CVE-2022-25728 2023-02-09 06h58 +00:00 Information disclosure in modem due to buffer over-read while processing response from DNS server
8.2
Haute
CVE-2022-40520 2023-01-06 05h02 +00:00 Memory corruption due to stack-based buffer overflow in Core
8.4
Haute
CVE-2022-40519 2023-01-06 05h02 +00:00 Information disclosure due to buffer overread in Core
6.8
Moyen
CVE-2022-40518 2023-01-06 05h02 +00:00 Information disclosure due to buffer overread in Core
6.8
Moyen
CVE-2022-40516 2023-01-06 05h02 +00:00 Memory corruption in Core due to stack-based buffer overflow.
8.4
Haute
CVE-2022-33300 2023-01-06 05h02 +00:00 Memory corruption in Automotive Android OS due to improper input validation.
8.4
Haute
CVE-2022-33286 2023-01-06 05h02 +00:00 Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
7.5
Haute
CVE-2022-33285 2023-01-06 05h02 +00:00 Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
7.5
Haute
CVE-2022-33284 2023-01-06 05h02 +00:00 Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.
8.2
Haute
CVE-2022-33283 2023-01-06 05h02 +00:00 Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.
8.2
Haute
CVE-2022-33276 2023-01-06 05h02 +00:00 Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.
8.4
Haute
CVE-2022-33266 2023-01-06 05h02 +00:00 Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.
7.8
Haute
CVE-2022-33255 2023-01-06 05h02 +00:00 Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device.
8.2
Haute
CVE-2022-33253 2023-01-06 05h02 +00:00 Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.
7.5
Haute
CVE-2022-33252 2023-01-06 05h02 +00:00 Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.
8.2
Haute
CVE-2022-25746 2023-01-06 05h02 +00:00 Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping.
8.1
Haute
CVE-2022-25725 2023-01-06 05h02 +00:00 Denial of service in MODEM due to improper pointer handling
6.2
Moyen
CVE-2022-22088 2023-01-06 04h42 +00:00 Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote
9.8
Critique
CVE-2022-25672 2022-12-12 23h00 +00:00 Denial of service in MODEM due to reachable assertion while processing SIB1 with invalid Bandwidth in Snapdragon Mobile
7.5
Haute
CVE-2022-25673 2022-12-12 23h00 +00:00 Denial of service in MODEM due to reachable assertion while processing configuration from network in Snapdragon Mobile
7.5
Haute
CVE-2022-25681 2022-12-12 23h00 +00:00 Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2022-25682 2022-12-12 23h00 +00:00 Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25685 2022-12-12 23h00 +00:00 Denial of service in Modem module due to improper authorization while error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-25691 2022-12-12 23h00 +00:00 Denial of service in Modem due to reachable assertion while processing SIB1 with invalid SCS and bandwidth settings in Snapdragon Mobile
7.5
Haute
CVE-2022-25692 2022-12-12 23h00 +00:00 Denial of service in Modem due to reachable assertion while processing the common config procedure in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-25695 2022-12-12 23h00 +00:00 Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25697 2022-12-12 23h00 +00:00 Memory corruption in i2c buses due to improper input validation while reading address configuration from i2c driver in Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-25698 2022-12-12 23h00 +00:00 Memory corruption in SPI buses due to improper input validation while reading address configuration from spi buses in Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-25702 2022-12-12 23h00 +00:00 Denial of service in modem due to reachable assertion while processing reconfiguration message in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-25711 2022-12-12 23h00 +00:00 Memory corruption in camera due to improper validation of array index in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.8
Haute
CVE-2022-33235 2022-12-12 23h00 +00:00 Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
8.2
Haute
CVE-2022-33238 2022-12-12 23h00 +00:00 Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-33268 2022-12-12 23h00 +00:00 Information disclosure due to buffer over-read in Bluetooth HOST while pairing and connecting A2DP. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.2
Haute
CVE-2022-25671 2022-11-14 23h00 +00:00 Denial of service in MODEM due to reachable assertion in Snapdragon Mobile
7.5
Haute
CVE-2022-25676 2022-11-14 23h00 +00:00 Information disclosure in video due to buffer over-read while parsing avi files in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
6.8
Moyen
CVE-2022-25724 2022-11-14 23h00 +00:00 Memory corruption in graphics due to buffer overflow while validating the user address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25741 2022-11-14 23h00 +00:00 Denial of service in WLAN due to potential null pointer dereference while accessing the memory location in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-33236 2022-11-14 23h00 +00:00 Transient DOS due to buffer over-read in WLAN firmware while parsing cipher suite info attributes. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-33237 2022-11-14 23h00 +00:00 Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-33239 2022-11-14 23h00 +00:00 Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-25666 2022-10-18 22h00 +00:00 Memory corruption due to use after free in service while trying to access maps by different threads in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
6.7
Moyen
CVE-2022-25687 2022-10-18 22h00 +00:00 memory corruption in video due to buffer overflow while parsing asf clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25720 2022-10-18 22h00 +00:00 Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25736 2022-10-18 22h00 +00:00 Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-25748 2022-10-18 22h00 +00:00 Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
9.8
Critique
CVE-2022-25749 2022-10-18 22h00 +00:00 Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-25723 2022-10-16 22h00 +00:00 Memory corruption in multimedia due to use after free during callback registration failure in Snapdragon Mobile
8.4
Haute
CVE-2022-25750 2022-10-16 22h00 +00:00 Memory corruption in BTHOST due to double free while music playback and calls over bluetooth headset in Snapdragon Mobile
8.8
Haute
CVE-2022-33214 2022-10-16 22h00 +00:00 Memory corruption in display due to time-of-check time-of-use of metadata reserved size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-33217 2022-10-16 22h00 +00:00 Memory corruption in Qualcomm IPC due to buffer copy without checking the size of input while starting communication with a compromised kernel. in Snapdragon Mobile
7.8
Haute
CVE-2022-22077 2022-10-11 22h00 +00:00 Memory corruption in graphics due to use-after-free in graphics dispatcher logic in Snapdragon Mobile
8.4
Haute
CVE-2022-25660 2022-10-11 22h00 +00:00 Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2022-25661 2022-10-11 22h00 +00:00 Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2022-25662 2022-10-11 22h00 +00:00 Information disclosure due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-25664 2022-10-11 22h00 +00:00 Information disclosure due to exposure of information while GPU reads the data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
6.2
Moyen
CVE-2022-25665 2022-10-11 22h00 +00:00 Information disclosure due to buffer over read in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile
7.1
Haute
CVE-2022-25708 2022-09-16 03h26 +00:00 Memory corruption in WLAN due to buffer copy without checking size of input while parsing keys in Snapdragon Connectivity, Snapdragon Mobile
9.8
Critique
CVE-2022-25706 2022-09-16 03h26 +00:00 Information disclosure in Bluetooth driver due to buffer over-read while reading l2cap length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.2
Haute
CVE-2022-25696 2022-09-16 03h25 +00:00 Memory corruption in display due to time-of-check time-of-use race condition during map or unmap in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-25690 2022-09-16 03h25 +00:00 Information disclosure in WLAN due to improper validation of array index while parsing crafted ANQP action frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
7.5
Haute
CVE-2022-25686 2022-09-16 03h25 +00:00 Memory corruption in video module due to buffer overflow while processing WAV file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
9.8
Critique
CVE-2022-25688 2022-09-16 03h25 +00:00 Memory corruption in video due to buffer overflow while parsing ps video clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25669 2022-09-16 03h25 +00:00 Denial of service in video due to buffer over read while parsing MP4 clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2022-25656 2022-09-16 03h25 +00:00 Possible integer overflow and memory corruption due to improper validation of buffer size sent to write to console when computing the payload size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-25653 2022-09-16 03h25 +00:00 Information disclosure in video due to buffer over-read while processing avi file in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
6.8
Moyen
CVE-2022-22094 2022-09-16 03h25 +00:00 memory corruption in Kernel due to race condition while getting mapping reference in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2022-22093 2022-09-16 03h25 +00:00 Memory corruption or temporary denial of service due to improper handling of concurrent hypervisor operations to attach or detach IRQs from virtual interrupt sources in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2022-22092 2022-09-16 03h25 +00:00 Memory corruption in kernel due to use after free issue in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2022-22074 2022-09-16 03h25 +00:00 Memory Corruption during wma file playback due to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-22066 2022-09-16 03h25 +00:00 Memory corruption occurs while processing command received from HLOS due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25668 2022-09-02 09h31 +00:00 Memory corruption in video driver due to double free while parsing ASF clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25659 2022-09-02 09h31 +00:00 Memory corruption due to buffer overflow while parsing MKV clips with invalid bitmap size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25658 2022-09-02 09h31 +00:00 Memory corruption due to incorrect pointer arithmetic when attempting to change the endianness in video parser function in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25657 2022-09-02 09h31 +00:00 Memory corruption due to buffer overflow occurs while processing invalid MKV clip which has invalid seek header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
9.8
Critique
CVE-2022-22080 2022-09-02 09h31 +00:00 Improper validation of backend id in PCM routing process can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
8.4
Haute
CVE-2022-22096 2022-09-02 09h31 +00:00 Memory corruption in Bluetooth HOST due to stack-based buffer overflow when when extracting data using command length parameter in Snapdragon Connectivity, Snapdragon Mobile
9.8
Critique
CVE-2022-22069 2022-09-02 09h31 +00:00 Devices with keyprotect off may store unencrypted keybox in RPMB and cause cryptographic issue in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.8
Haute
CVE-2022-22062 2022-09-02 09h31 +00:00 An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
9.1
Critique
CVE-2022-22059 2022-09-02 09h31 +00:00 Memory corruption due to out of bound read while parsing a video file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2021-35135 2022-09-02 09h31 +00:00 A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
6.2
Moyen
CVE-2021-35134 2022-09-02 09h31 +00:00 Due to insufficient validation of ELF headers, an Incorrect Calculation of Buffer Size can occur in Boot leading to memory corruption in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2021-35132 2022-09-02 09h31 +00:00 Out of bound write in DSP service due to improper bound check for response buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2021-35133 2022-09-02 09h31 +00:00 Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
6.7
Moyen
CVE-2021-35122 2022-09-02 09h30 +00:00 Non-secure region can try modifying RG permissions of IO space xPUs due to improper input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
9.3
Critique
CVE-2021-35097 2022-09-02 09h30 +00:00 Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.3
Haute
CVE-2022-22071 2022-06-14 09h51 +00:00 Possible use after free when process shell memory is freed using IOCTL munmap call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
8.4
Haute
CVE-2022-22068 2022-06-14 07h51 +00:00 kernel event may contain unexpected content which is not generated by NPU software in asynchronous execution mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-22065 2022-06-14 07h51 +00:00 Out of bound read in WLAN HOST due to improper length check can lead to DOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2022-22064 2022-06-14 07h51 +00:00 Possible buffer over read due to lack of size validation while unpacking frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2021-35116 2022-06-14 07h51 +00:00 APK can load a crafted model into the CDSP which can lead to a compromise of CDSP and other APK`s data executing there in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.7
Haute
CVE-2021-35094 2022-06-14 07h51 +00:00 Improper verification of timeout-based authentication in identity credential can lead to invalid authorization in HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2021-35092 2022-06-14 07h51 +00:00 Processing DCB/AVB algorithm with an invalid queue index from IOCTL request could lead to arbitrary address modification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
6.7
Moyen
CVE-2021-35090 2022-06-14 07h51 +00:00 Possible hypervisor memory corruption due to TOC TOU race condition when updating address mappings in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
9.3
Critique
CVE-2021-35085 2022-06-14 07h50 +00:00 Possible buffer overflow due to lack of buffer length check during management frame Rx handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.1
Haute
CVE-2021-35084 2022-06-14 07h50 +00:00 Possible out of bound read due to lack of length check of data length for a DIAG event in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
7.1
Haute
CVE-2022-22090 2022-06-14 07h40 +00:00 Memory corruption in audio due to use after free while managing buffers from internal cache in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile
8.4
Haute
CVE-2022-22087 2022-06-14 07h40 +00:00 memory corruption in video due to buffer overflow while parsing mkv clip with no codechecker in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-22086 2022-06-14 07h40 +00:00 Memory corruption in video due to double free while parsing 3gp clip with invalid meta data atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-22085 2022-06-14 07h40 +00:00 Memory corruption in video due to buffer overflow while reading the dts file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-22084 2022-06-14 07h40 +00:00 Memory corruption when extracting qcp audio file due to lack of check on data length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-22083 2022-06-14 07h40 +00:00 Denial of service due to memory corruption while extracting ape header from clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2022-22082 2022-06-14 07h40 +00:00 Memory corruption due to possible buffer overflow while parsing DSF header with corrupted channel count in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2021-35120 2022-06-14 07h40 +00:00 Improper handling between export and release functions on the same handle from client can lead to use after free in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
6.7
Moyen
CVE-2021-35119 2022-06-14 07h40 +00:00 Potential out of Bounds read in FIPS event processing due to improper validation of the length from the firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
5.5
Moyen
CVE-2021-35118 2022-06-14 07h40 +00:00 An out-of-bounds write can occur due to an incorrect input check in the camera driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
6.7
Moyen
CVE-2022-22057 2022-06-13 22h00 +00:00 Use after free in graphics fence due to a race condition while closing fence file descriptor and destroy graphics timeline simultaneously in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2021-30266 2021-11-12 05h16 +00:00 Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
6.7
Moyen
CVE-2021-30259 2021-11-12 05h15 +00:00 Possible out of bound access due to improper validation of function table entries in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.8
Haute
CVE-2021-30255 2021-11-12 05h15 +00:00 Possible buffer overflow due to improper input validation in PDM DIAG command in FTM in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.8
Haute
CVE-2021-1982 2021-11-12 05h15 +00:00 Possible denial of service scenario due to improper input validation of received NAS OTA message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-1981 2021-11-12 05h15 +00:00 Possible buffer over read due to improper IE size check of Bearer capability IE in MT setup request from network in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
9.1
Critique
CVE-2021-1979 2021-11-12 05h15 +00:00 Possible buffer overflow due to improper validation of FTM command payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2021-1975 2021-11-12 05h15 +00:00 Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2021-1973 2021-11-12 05h15 +00:00 A FTM Diag command can allow an arbitrary write into modem OS space in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.8
Haute
CVE-2021-1924 2021-11-12 05h15 +00:00 Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
9
Critique
CVE-2021-1921 2021-11-12 05h15 +00:00 Possible memory corruption due to Improper handling of hypervisor unmap operations for concurrent memory operations in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2021-1903 2021-11-12 05h15 +00:00 Possible denial of service scenario can occur due to lack of length check on Channel Switch Announcement IE in beacon or probe response frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
5.3
Moyen