Qualcomm SNAPDRAGON 855+/860 FIRMWARE -

CPE Details

Qualcomm SNAPDRAGON 855+/860 FIRMWARE -
qualcomm
snapdragon_855\+\/860_firmware
-
2023-07-10
09h07 +00:00
2023-09-02
00h30 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:o:qualcomm:snapdragon_855\+\/860_firmware:-:*:*:*:*:*:*:*

Informations

Vendor

qualcomm

Product

snapdragon_855\+\/860_firmware

Version

-

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-28575 2023-08-08 09h15 +00:00 The cam_get_device_priv function does not check the type of handle being returned (device/session/link). This would lead to invalid type usage if a wrong handle is passed to it.
7.8
Haute
CVE-2023-28542 2023-07-04 04h46 +00:00 Memory Corruption in WLAN HOST while fetching TX status information.
7.8
Haute
CVE-2023-28541 2023-07-04 04h46 +00:00 Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.
7.8
Haute
CVE-2023-22667 2023-07-04 04h46 +00:00 Memory Corruption in Audio while allocating the ion buffer during the music playback.
8.4
Haute
CVE-2023-22387 2023-07-04 04h46 +00:00 Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.
7.8
Haute
CVE-2023-21639 2023-07-04 04h46 +00:00 Memory corruption in Audio while processing sva_model_serializer using memory size passed by HIDL client.
7.8
Haute
CVE-2023-21638 2023-07-04 04h46 +00:00 Memory corruption in Video while calling APIs with different instance ID than the one received in initialization.
7.8
Haute
CVE-2023-21637 2023-07-04 04h46 +00:00 Memory corruption in Linux while calling system configuration APIs.
7.8
Haute
CVE-2023-21635 2023-07-04 04h46 +00:00 Memory Corruption in Data Network Stack & Connectivity when sim gets detected on telephony.
7.8
Haute
CVE-2023-21633 2023-07-04 04h46 +00:00 Memory Corruption in Linux while processing QcRilRequestImsRegisterMultiIdentityMessage request.
7.8
Haute
CVE-2023-21631 2023-07-04 04h46 +00:00 Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.
9.8
Critique
CVE-2023-21629 2023-07-04 04h46 +00:00 Memory Corruption in Modem due to double free while parsing the PKCS15 sim files.
6.8
Moyen
Les informations affichées sur CVE Find proviennent de plusieurs sources de référence rigoureusement sélectionnées. Les données CVE sont fournies par MITRE Corporation et la National Vulnerability Database (NVD). Le catalogue des vulnérabilités activement exploitées (KEV) provient de la Cybersecurity and Infrastructure Security Agency (CISA), tandis que les scores EPSS sont issus de FIRST.org. Enfin, les données relatives aux faiblesses logicielles (CWE) et aux schémas d'attaque courants (CAPEC) sont maintenues par MITRE Corporation, et les informations sur les configurations logicielles et matérielles (CPE) proviennent du NVD.