Qualcomm SD 8 Gen1 5G Firmware

CPE Details

Qualcomm SD 8 Gen1 5G Firmware
-
2022-01-14
18h10 +00:00
2022-01-14
18h12 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:*

Informations

Vendor

qualcomm

Product

sd_8_gen1_5g_firmware

Version

-

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-53027 2025-03-03 10h07 +00:00 Transient DOS may occur while processing the country IE.
7.5
Haute
CVE-2024-53024 2025-03-03 10h07 +00:00 Memory corruption in display driver while detaching a device.
7.8
Haute
CVE-2024-53014 2025-03-03 10h07 +00:00 Memory corruption may occur while validating ports and channels in Audio driver.
7.8
Haute
CVE-2024-43051 2025-03-03 10h07 +00:00 Information disclosure while deriving keys for a session for any Widevine use case.
5.5
Moyen
CVE-2024-38426 2025-03-03 10h07 +00:00 While processing the authentication message in UE, improper authentication may lead to information disclosure.
5.4
Moyen
CVE-2024-49838 2025-02-03 16h51 +00:00 Information disclosure while parsing the OCI IE with invalid length.
8.2
Haute
CVE-2024-49834 2025-02-03 16h51 +00:00 Memory corruption while power-up or power-down sequence of the camera sensor.
7.8
Haute
CVE-2024-49833 2025-02-03 16h51 +00:00 Memory corruption can occur in the camera when an invalid CID is used.
7.8
Haute
CVE-2024-38420 2025-02-03 16h51 +00:00 Memory corruption while configuring a Hypervisor based input virtual device.
8.8
Haute
CVE-2024-45553 2025-01-06 10h33 +00:00 Memory corruption can occur when process-specific maps are added to the global list. If a map is removed from the global list while another thread is using it for a process-specific task, issues may arise.
7.8
Haute
CVE-2024-33055 2025-01-06 10h33 +00:00 Memory corruption while invoking IOCTL calls to unmap the DMA buffers.
7.8
Haute
CVE-2024-33056 2024-12-02 10h18 +00:00 Memory corruption when allocating and accessing an entry in an SMEM partition continuously.
8.4
Haute
CVE-2024-33044 2024-12-02 10h18 +00:00 Memory corruption while Configuring the SMR/S2CR register in Bypass mode.
8.4
Haute
CVE-2024-38424 2024-11-04 10h05 +00:00 Memory corruption during GNSS HAL process initialization.
7.8
Haute
CVE-2024-38415 2024-11-04 10h04 +00:00 Memory corruption while handling session errors from firmware.
7.8
Haute
CVE-2024-38408 2024-11-04 10h04 +00:00 Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions.
9.1
Critique
CVE-2024-23377 2024-11-04 10h04 +00:00 Memory corruption while invoking IOCTL command from user-space, when a user modifies the original packet size of the command after system properties have been already sent to the EVA driver.
6.7
Moyen
CVE-2024-23369 2024-10-07 12h58 +00:00 Memory corruption when invalid length is provided from HLOS for FRS/UDS request/response buffers.
7.8
Haute
CVE-2024-38402 2024-09-02 10h22 +00:00 Memory corruption while processing IOCTL call for getting group info.
7.8
Haute
CVE-2024-33060 2024-09-02 10h22 +00:00 Memory corruption when two threads try to map and unmap a single node simultaneously.
8.4
Haute
CVE-2024-33052 2024-09-02 10h22 +00:00 Memory corruption when user provides data for FM HCI command control operations.
7.8
Haute
CVE-2024-33051 2024-09-02 10h22 +00:00 Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.
7.5
Haute
CVE-2024-33050 2024-09-02 10h22 +00:00 Transient DOS while parsing MBSSID during new IE generation in beacon/probe frame when IE length check is either missing or improper.
7.5
Haute
CVE-2024-33045 2024-09-02 10h22 +00:00 Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
8.4
Haute
CVE-2024-33043 2024-09-02 10h22 +00:00 Transient DOS while handling PS event when Program Service name length offset value is set to 255.
5.5
Moyen
CVE-2024-33042 2024-09-02 10h22 +00:00 Memory corruption when Alternative Frequency offset value is set to 255.
7.8
Haute
CVE-2024-33038 2024-09-02 10h22 +00:00 Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.
7.8
Haute
CVE-2024-33034 2024-08-05 14h21 +00:00 Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
8.4
Haute
CVE-2024-33023 2024-08-05 14h21 +00:00 Memory corruption while creating a fence to wait on timeline events, and simultaneously signal timeline events.
8.4
Haute
CVE-2024-33015 2024-08-05 14h21 +00:00 Transient DOS while parsing SCAN RNR IE when bytes received from AP is such that the size of the last param of IE is less than neighbor report.
7.5
Haute
CVE-2024-33014 2024-08-05 14h21 +00:00 Transient DOS while parsing ESP IE from beacon/probe response frame.
7.5
Haute
CVE-2024-33012 2024-08-05 14h21 +00:00 Transient DOS while parsing the multiple MBSSID IEs from the beacon, when the tag length is non-zero value but with end of beacon.
7.5
Haute
CVE-2024-33011 2024-08-05 14h21 +00:00 Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.
7.5
Haute
CVE-2024-33010 2024-08-05 14h21 +00:00 Transient DOS while parsing fragments of MBSSID IE from beacon frame.
7.5
Haute
CVE-2024-23384 2024-08-05 14h21 +00:00 Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker.
8.4
Haute
CVE-2024-23382 2024-08-05 14h21 +00:00 Memory corruption while processing graphics kernel driver request to create DMA fence.
8.4
Haute
CVE-2024-23357 2024-08-05 14h21 +00:00 Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.
6.2
Moyen
CVE-2024-23356 2024-08-05 14h21 +00:00 Memory corruption during session sign renewal request calls in HLOS.
7.8
Haute
CVE-2024-23355 2024-08-05 14h21 +00:00 Memory corruption when keymaster operation imports a shared key.
7.8
Haute
CVE-2024-21481 2024-08-05 14h21 +00:00 Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.
8.4
Haute
CVE-2024-21479 2024-08-05 14h21 +00:00 Transient DOS during music playback of ALAC content.
7.5
Haute
CVE-2024-23380 2024-07-01 14h17 +00:00 Memory corruption while handling user packets during VBO bind operation.
8.4
Haute
CVE-2024-23373 2024-07-01 14h17 +00:00 Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.
8.4
Haute
CVE-2024-23372 2024-07-01 14h17 +00:00 Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.
8.4
Haute
CVE-2024-23368 2024-07-01 14h17 +00:00 Memory corruption when allocating and accessing an entry in an SMEM partition.
7.8
Haute
CVE-2024-21469 2024-07-01 14h17 +00:00 Memory corruption when an invoke call and a TEE call are bound for the same trusted application.
7.8
Haute
CVE-2024-21465 2024-07-01 14h17 +00:00 Memory corruption while processing key blob passed by the user.
7.8
Haute
CVE-2024-21462 2024-07-01 14h17 +00:00 Transient DOS while loading the TA ELF file.
7.1
Haute
CVE-2024-21461 2024-07-01 14h17 +00:00 Memory corruption while performing finish HMAC operation when context is freed by keymaster.
8.4
Haute
CVE-2024-23363 2024-06-03 10h05 +00:00 Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame.
7.5
Haute
CVE-2023-43542 2024-06-03 10h05 +00:00 Memory corruption while copying a keyblob`s material when the key material`s size is not accurately checked.
7.8
Haute
CVE-2023-43538 2024-06-03 10h05 +00:00 Memory corruption in TZ Secure OS while Tunnel Invoke Manager initialization.
9.3
Critique
CVE-2024-23354 2024-05-06 14h32 +00:00 Memory corruption when the IOCTL call is interrupted by a signal.
8.4
Haute
CVE-2024-23351 2024-05-06 14h32 +00:00 Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions.
8.4
Haute
CVE-2024-21480 2024-05-06 14h32 +00:00 Memory corruption while playing audio file having large-sized input buffer.
9.8
Critique
CVE-2024-21477 2024-05-06 14h32 +00:00 Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM) frame.
7.5
Haute
CVE-2024-21475 2024-05-06 14h32 +00:00 Memory corruption when the payload received from firmware is not as per the expected protocol size.
7.8
Haute
CVE-2024-21471 2024-05-06 14h32 +00:00 Memory corruption when IOMMU unmap of a GPU buffer fails in Linux.
8.4
Haute
CVE-2023-43531 2024-05-06 14h32 +00:00 Memory corruption while verifying the serialized header when the key pairs are generated.
8.4
Haute
CVE-2023-43530 2024-05-06 14h32 +00:00 Memory corruption in HLOS while checking for the storage type.
7.8
Haute
CVE-2023-33119 2024-05-06 14h32 +00:00 Memory corruption while loading a VM from a signed VM image that is not coherent in the processor cache.
8.4
Haute
CVE-2024-21463 2024-04-01 15h06 +00:00 Memory corruption while processing Codec2 during v13k decoder pitch synthesis.
9.8
Critique
CVE-2023-33115 2024-04-01 15h05 +00:00 Memory corruption while processing buffer initialization, when trusted report for certain report types are generated.
7.8
Haute
CVE-2023-33023 2024-04-01 15h05 +00:00 Memory corruption while processing finish_sign command to pass a rsp buffer.
8.4
Haute
CVE-2023-28547 2024-04-01 15h05 +00:00 Memory corruption in SPS Application while requesting for public key in sorter TA.
8.4
Haute
CVE-2023-43550 2024-03-04 10h48 +00:00 Memory corruption while processing a QMI request for allocating memory from a DHMS supported subsystem.
7.8
Haute
CVE-2023-43549 2024-03-04 10h48 +00:00 Memory corruption while processing TPC target power table in FTM TPC.
8.4
Haute
CVE-2023-43548 2024-03-04 10h48 +00:00 Memory corruption while parsing qcp clip with invalid chunk data size.
9.8
Critique
CVE-2023-43539 2024-03-04 10h48 +00:00 Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol frame.
7.5
Haute
CVE-2023-28578 2024-03-04 10h48 +00:00 Memory corruption in Core Services while executing the command for removing a single event listener.
9.3
Critique
CVE-2023-43536 2024-02-06 05h47 +00:00 Transient DOS while parse fils IE with length equal to 1.
7.5
Haute
CVE-2023-43533 2024-02-06 05h47 +00:00 Transient DOS in WLAN Firmware when the length of received beacon is less than length of ieee802.11 beacon frame.
7.5
Haute
CVE-2023-43523 2024-02-06 05h47 +00:00 Transient DOS while processing 11AZ RTT management action frame received through OTA.
7.5
Haute
CVE-2023-43522 2024-02-06 05h47 +00:00 Transient DOS while key unwrapping process, when the given encrypted key is empty or NULL.
7.5
Haute
CVE-2023-43519 2024-02-06 05h47 +00:00 Memory corruption in video while parsing the Videoinfo, when the size of atom is greater than the videoinfo size.
9.8
Critique
CVE-2023-43518 2024-02-06 05h47 +00:00 Memory corruption in video while parsing invalid mp2 clip.
9.8
Critique
CVE-2023-43513 2024-02-06 05h47 +00:00 Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.
7.8
Haute
CVE-2023-33076 2024-02-06 05h47 +00:00 Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.
7.8
Haute
CVE-2023-33072 2024-02-06 05h47 +00:00 Memory corruption in Core while processing control functions.
9.3
Critique
CVE-2023-43511 2024-01-02 05h38 +00:00 Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains `IPPROTO_NONE` as the next header.
7.5
Haute
CVE-2023-33113 2024-01-02 05h38 +00:00 Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.
8.4
Haute
CVE-2023-33112 2024-01-02 05h38 +00:00 Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.
7.5
Haute
CVE-2023-33109 2024-01-02 05h38 +00:00 Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.
7.5
Haute
CVE-2023-33062 2024-01-02 05h38 +00:00 Transient DOS in WLAN Firmware while parsing a BTM request.
7.5
Haute
CVE-2023-33037 2024-01-02 05h38 +00:00 Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data.
7.1
Haute
CVE-2023-33036 2024-01-02 05h38 +00:00 Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.
7.1
Haute
CVE-2023-33030 2024-01-02 05h38 +00:00 Memory corruption in HLOS while running playready use-case.
9.3
Critique
CVE-2023-33107 2023-12-05 03h04 +00:00 Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
8.4
Haute
CVE-2023-33106 2023-12-05 03h04 +00:00 Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.
8.4
Haute
CVE-2023-33098 2023-12-05 03h04 +00:00 Transient DOS while parsing WPA IES, when it is passed with length more than expected size.
7.5
Haute
CVE-2023-33097 2023-12-05 03h04 +00:00 Transient DOS in WLAN Firmware while processing a FTMR frame.
7.5
Haute
CVE-2023-33089 2023-12-05 03h04 +00:00 Transient DOS when processing a NULL buffer while parsing WLAN vdev.
7.5
Haute
CVE-2023-33088 2023-12-05 03h04 +00:00 Memory corruption when processing cmd parameters while parsing vdev.
8.4
Haute
CVE-2023-33080 2023-12-05 03h04 +00:00 Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
7.5
Haute
CVE-2023-33017 2023-12-05 03h03 +00:00 Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.
7.8
Haute
CVE-2023-28588 2023-12-05 03h03 +00:00 Transient DOS in Bluetooth Host while rfc slot allocation.
7.5
Haute
CVE-2023-28587 2023-12-05 03h03 +00:00 Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.
7.8
Haute
CVE-2023-28586 2023-12-05 03h03 +00:00 Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.
6.5
Moyen
CVE-2023-28585 2023-12-05 03h03 +00:00 Memory corruption while loading an ELF segment in TEE Kernel.
8.8
Haute
CVE-2023-28550 2023-12-05 03h03 +00:00 Memory corruption in MPP performance while accessing DSM watermark using external memory address.
7.8
Haute
CVE-2023-28546 2023-12-05 03h03 +00:00 Memory Corruption in SPS Application while exporting public key in sorter TA.
7.8
Haute
CVE-2023-33047 2023-11-07 05h26 +00:00 Transient DOS in WLAN Firmware while parsing no-inherit IES.
7.5
Haute
CVE-2023-33045 2023-11-07 05h26 +00:00 Memory corruption in WLAN Firmware while parsing a NAN management frame carrying a S3 attribute.
9.8
Critique
CVE-2023-28556 2023-11-07 05h26 +00:00 Cryptographic issue in HLOS during key management.
7.8
Haute
CVE-2023-28545 2023-11-07 05h26 +00:00 Memory corruption in TZ Secure OS while loading an app ELF.
8.2
Haute
CVE-2023-24852 2023-11-07 05h26 +00:00 Memory Corruption in Core due to secure memory access by user while loading modem image.
8.4
Haute
CVE-2023-33029 2023-10-03 05h00 +00:00 Memory corruption in DSP Service during a remote call from HLOS to DSP.
8.4
Haute
CVE-2023-33028 2023-10-03 05h00 +00:00 Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.
9.8
Critique
CVE-2023-33027 2023-10-03 05h00 +00:00 Transient DOS in WLAN Firmware while parsing rsn ies.
7.5
Haute
CVE-2023-33026 2023-10-03 05h00 +00:00 Transient DOS in WLAN Firmware while parsing a NAN management frame.
7.5
Haute
CVE-2023-24853 2023-10-03 05h00 +00:00 Memory Corruption in HLOS while registering for key provisioning notify.
8.4
Haute
CVE-2023-24850 2023-10-03 05h00 +00:00 Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.
7.8
Haute
CVE-2023-21673 2023-10-03 05h00 +00:00 Improper Access to the VM resource manager can lead to Memory Corruption.
8.7
Haute
CVE-2023-33016 2023-09-05 06h24 +00:00 Transient DOS in WLAN firmware while parsing MLO (multi-link operation).
7.5
Haute
CVE-2023-33015 2023-09-05 06h24 +00:00 Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.
7.5
Haute
CVE-2023-28584 2023-09-05 06h24 +00:00 Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement (CSA).
7.5
Haute
CVE-2023-28581 2023-09-05 06h24 +00:00 Memory corruption in WLAN Firmware while parsing receieved GTK Keys in GTK KDE.
9.8
Critique
CVE-2023-28573 2023-09-05 06h24 +00:00 Memory corruption in WLAN HAL while parsing WMI command parameters.
7.8
Haute
CVE-2023-28567 2023-09-05 06h24 +00:00 Memory corruption in WLAN HAL while handling command through WMI interfaces.
7.8
Haute
CVE-2023-28558 2023-09-05 06h24 +00:00 Memory corruption in WLAN handler while processing PhyID in Tx status handler.
7.8
Haute
CVE-2023-28557 2023-09-05 06h24 +00:00 Memory corruption in WLAN HAL while processing command parameters from untrusted WMI payload.
7.8
Haute
CVE-2023-28549 2023-09-05 06h24 +00:00 Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.
7.8
Haute
CVE-2023-28548 2023-09-05 06h24 +00:00 Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.
7.8
Haute
CVE-2023-28538 2023-09-05 06h24 +00:00 Memory corruption in WIN Product while invoking WinAcpi update driver in the UEFI region.
8.4
Haute
CVE-2023-21667 2023-09-05 06h24 +00:00 Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard.
6.5
Moyen
CVE-2023-21664 2023-09-05 06h24 +00:00 Memory Corruption in Core Platform while printing the response buffer in log.
7.8
Haute
CVE-2023-21663 2023-09-05 06h24 +00:00 Memory Corruption while accessing metadata in Display.
7.8
Haute
CVE-2023-21662 2023-09-05 06h24 +00:00 Memory corruption in Core Platform while printing the response buffer in log.
7.8
Haute
CVE-2023-21655 2023-09-05 06h23 +00:00 Memory corruption in Audio while validating and mapping metadata.
7.8
Haute
CVE-2022-33220 2023-09-05 06h23 +00:00 Information disclosure in Automotive multimedia due to buffer over-read.
5.5
Moyen
CVE-2023-28537 2023-08-08 09h15 +00:00 Memory corruption while allocating memory in COmxApeDec module in Audio.
8.4
Haute
CVE-2023-22666 2023-08-08 09h15 +00:00 Memory Corruption in Audio while playing amrwbplus clips with modified content.
8.4
Haute
CVE-2023-21652 2023-08-08 09h14 +00:00 Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
7.7
Haute
CVE-2023-21651 2023-08-08 09h14 +00:00 Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
9.3
Critique
CVE-2023-21647 2023-08-08 09h14 +00:00 Information disclosure in Bluetooth when an GATT packet is received due to improper input validation.
6.5
Moyen
CVE-2023-21627 2023-08-08 09h14 +00:00 Memory corruption in Trusted Execution Environment while calling service API with invalid address.
7.8
Haute
CVE-2023-21626 2023-08-08 09h14 +00:00 Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
7.1
Haute
CVE-2022-40510 2023-08-08 09h14 +00:00 Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
9.8
Critique
CVE-2023-28542 2023-07-04 04h46 +00:00 Memory Corruption in WLAN HOST while fetching TX status information.
7.8
Haute
CVE-2023-24854 2023-07-04 04h46 +00:00 Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.
7.8
Haute
CVE-2023-24851 2023-07-04 04h46 +00:00 Memory Corruption in WLAN HOST while parsing QMI response message from firmware.
7.8
Haute
CVE-2023-22667 2023-07-04 04h46 +00:00 Memory Corruption in Audio while allocating the ion buffer during the music playback.
8.4
Haute
CVE-2023-22387 2023-07-04 04h46 +00:00 Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.
7.8
Haute
CVE-2023-22386 2023-07-04 04h46 +00:00 Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.
7.8
Haute
CVE-2023-21672 2023-07-04 04h46 +00:00 Memory corruption in Audio while running concurrent tunnel playback or during concurrent audio tunnel recording sessions.
8.4
Haute
CVE-2023-21658 2023-06-06 07h39 +00:00 Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.
7.5
Haute
CVE-2023-21656 2023-06-06 07h39 +00:00 Memory corruption in WLAN HOST while receiving an WMI event from firmware.
7.8
Haute
CVE-2022-40533 2023-06-06 07h39 +00:00 Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.
6.2
Moyen
CVE-2022-40529 2023-06-06 07h39 +00:00 Memory corruption due to improper access control in kernel while processing a mapping request from root process.
7.8
Haute
CVE-2022-40523 2023-06-06 07h38 +00:00 Information disclosure in Kernel due to indirect branch misprediction.
7.1
Haute
CVE-2022-40507 2023-06-06 07h38 +00:00 Memory corruption due to double free in Core while mapping HLOS address to the list.
8.4
Haute
CVE-2022-33307 2023-06-06 07h38 +00:00 Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is passed.
8.4
Haute
CVE-2022-33263 2023-06-06 07h38 +00:00 Memory corruption due to use after free in Core when multiple DCI clients register and deregister.
7.8
Haute
CVE-2022-22076 2023-06-06 07h38 +00:00 information disclosure due to cryptographic issue in Core during RPMB read request.
7.1
Haute
CVE-2022-33273 2023-05-02 07h30 +00:00 Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.
7.3
Haute
CVE-2022-25713 2023-05-02 05h08 +00:00 Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared key.
7.8
Haute
CVE-2022-40532 2023-04-04 04h46 +00:00 Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
8.4
Haute
CVE-2022-33288 2023-04-04 04h46 +00:00 Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection information.
9.3
Critique
CVE-2022-33269 2023-04-04 04h46 +00:00 Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.
9.3
Critique
CVE-2022-40540 2023-03-07 04h43 +00:00 Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.
8.4
Haute
CVE-2022-40537 2023-03-07 04h43 +00:00 Memory corruption in Bluetooth HOST while processing the AVRC_PDU_GET_PLAYER_APP_VALUE_TEXT AVRCP response.
9.8
Critique
CVE-2022-40531 2023-03-07 04h43 +00:00 Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.
8.4
Haute
CVE-2022-40530 2023-03-07 04h43 +00:00 Memory corruption in WLAN due to integer overflow to buffer overflow in WLAN during initialization phase.
8.4
Haute
CVE-2022-40527 2023-03-07 04h43 +00:00 Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.
7.5
Haute
CVE-2022-40515 2023-03-07 04h43 +00:00 Memory corruption in Video due to double free while playing 3gp clip with invalid metadata atoms.
9.8
Critique
CVE-2022-33309 2023-03-07 04h43 +00:00 Transient DOS due to buffer over-read in WLAN Firmware while parsing secure FTMR frame with size lesser than 39 Bytes.
7.5
Haute
CVE-2022-33278 2023-03-07 04h43 +00:00 Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.
7.8
Haute
CVE-2022-33272 2023-03-07 04h43 +00:00 Transient DOS in modem due to reachable assertion.
7.5
Haute
CVE-2022-33260 2023-03-07 04h43 +00:00 Memory corruption due to stack based buffer overflow in core while sending command from USB of large size.
7.8
Haute
CVE-2022-33257 2023-03-07 04h43 +00:00 Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.
9.3
Critique
CVE-2022-33256 2023-03-07 04h43 +00:00 Memory corruption due to improper validation of array index in Multi-mode call processor.
9.8
Critique
CVE-2022-33254 2023-03-07 04h43 +00:00 Transient DOS due to reachable assertion in Modem while processing SIB1 Message.
7.5
Haute
CVE-2022-33250 2023-03-07 04h43 +00:00 Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover.
7.5
Haute
CVE-2022-33244 2023-03-07 04h43 +00:00 Transient DOS due to reachable assertion in modem during MIB reception and SIB timeout
7.5
Haute
CVE-2022-33242 2023-03-07 04h43 +00:00 Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio PD.
7.8
Haute
CVE-2022-33213 2023-03-07 04h43 +00:00 Memory corruption in modem due to buffer overflow while processing a PPP packet
8.8
Haute
CVE-2022-25709 2023-03-07 04h43 +00:00 Memory corruption in modem due to use of out of range pointer offset while processing qmi msg
8.4
Haute
CVE-2022-25705 2023-03-07 04h43 +00:00 Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
7.8
Haute
CVE-2022-25694 2023-03-07 04h43 +00:00 Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM
8.4
Haute
CVE-2022-22075 2023-03-07 04h43 +00:00 Information Disclosure in Graphics during GPU context switch.
6.2
Moyen
CVE-2022-40514 2023-02-09 06h58 +00:00 Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.
9.8
Critique
CVE-2022-40513 2023-02-09 06h58 +00:00 Transient DOS due to uncontrolled resource consumption in WLAN firmware when peer is freed in non qos state.
7.5
Haute
CVE-2022-40512 2023-02-09 06h58 +00:00 Transient DOS in WLAN Firmware due to buffer over-read while processing probe response or beacon.
7.5
Haute
CVE-2022-40502 2023-02-09 06h58 +00:00 Transient DOS due to improper input validation in WLAN Host.
7.5
Haute
CVE-2022-34146 2023-02-09 06h58 +00:00 Transient DOS due to improper input validation in WLAN Host while parsing frame during defragmentation.
7.5
Haute
CVE-2022-34145 2023-02-09 06h58 +00:00 Transient DOS due to buffer over-read in WLAN Host while parsing frame information.
7.5
Haute
CVE-2022-33306 2023-02-09 06h58 +00:00 Transient DOS due to buffer over-read in WLAN while processing an incoming management frame with incorrectly filled IEs.
7.5
Haute
CVE-2022-33277 2023-02-09 06h58 +00:00 Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.
8.4
Haute
CVE-2022-33271 2023-02-09 06h58 +00:00 Information disclosure due to buffer over-read in WLAN while parsing NMF frame.
8.2
Haute
CVE-2022-33248 2023-02-09 06h58 +00:00 Memory corruption in User Identity Module due to integer overflow to buffer overflow when a segement is received via qmi http.
7.8
Haute
CVE-2022-33243 2023-02-09 06h58 +00:00 Memory corruption due to improper access control in Qualcomm IPC.
8.4
Haute
CVE-2022-33233 2023-02-09 06h58 +00:00 Memory corruption due to configuration weakness in modem wile sending command to write protected files.
7.8
Haute
CVE-2022-33232 2023-02-09 06h58 +00:00 Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory.
9.3
Critique
CVE-2022-33221 2023-02-09 06h58 +00:00 Information disclosure in Trusted Execution Environment due to buffer over-read while processing metadata verification requests.
6.8
Moyen
CVE-2022-40520 2023-01-06 05h02 +00:00 Memory corruption due to stack-based buffer overflow in Core
8.4
Haute
CVE-2022-40519 2023-01-06 05h02 +00:00 Information disclosure due to buffer overread in Core
6.8
Moyen
CVE-2022-40518 2023-01-06 05h02 +00:00 Information disclosure due to buffer overread in Core
6.8
Moyen
CVE-2022-40516 2023-01-06 05h02 +00:00 Memory corruption in Core due to stack-based buffer overflow.
8.4
Haute
CVE-2022-33300 2023-01-06 05h02 +00:00 Memory corruption in Automotive Android OS due to improper input validation.
8.4
Haute
CVE-2022-33286 2023-01-06 05h02 +00:00 Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
7.5
Haute
CVE-2022-33285 2023-01-06 05h02 +00:00 Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
7.5
Haute
CVE-2022-33284 2023-01-06 05h02 +00:00 Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.
8.2
Haute
CVE-2022-33283 2023-01-06 05h02 +00:00 Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.
8.2
Haute
CVE-2022-33276 2023-01-06 05h02 +00:00 Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.
8.4
Haute
CVE-2022-33266 2023-01-06 05h02 +00:00 Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.
7.8
Haute
CVE-2022-33255 2023-01-06 05h02 +00:00 Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device.
8.2
Haute
CVE-2022-33253 2023-01-06 05h02 +00:00 Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.
7.5
Haute
CVE-2022-33252 2023-01-06 05h02 +00:00 Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.
8.2
Haute
CVE-2022-25746 2023-01-06 05h02 +00:00 Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping.
8.1
Haute
CVE-2022-25725 2023-01-06 05h02 +00:00 Denial of service in MODEM due to improper pointer handling
6.2
Moyen
CVE-2022-22088 2023-01-06 04h42 +00:00 Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote
9.8
Critique
CVE-2022-25672 2022-12-12 23h00 +00:00 Denial of service in MODEM due to reachable assertion while processing SIB1 with invalid Bandwidth in Snapdragon Mobile
7.5
Haute
CVE-2022-25673 2022-12-12 23h00 +00:00 Denial of service in MODEM due to reachable assertion while processing configuration from network in Snapdragon Mobile
7.5
Haute
CVE-2022-25681 2022-12-12 23h00 +00:00 Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2022-25682 2022-12-12 23h00 +00:00 Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25685 2022-12-12 23h00 +00:00 Denial of service in Modem module due to improper authorization while error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-25691 2022-12-12 23h00 +00:00 Denial of service in Modem due to reachable assertion while processing SIB1 with invalid SCS and bandwidth settings in Snapdragon Mobile
7.5
Haute
CVE-2022-25692 2022-12-12 23h00 +00:00 Denial of service in Modem due to reachable assertion while processing the common config procedure in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-25695 2022-12-12 23h00 +00:00 Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25697 2022-12-12 23h00 +00:00 Memory corruption in i2c buses due to improper input validation while reading address configuration from i2c driver in Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-25698 2022-12-12 23h00 +00:00 Memory corruption in SPI buses due to improper input validation while reading address configuration from spi buses in Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-25702 2022-12-12 23h00 +00:00 Denial of service in modem due to reachable assertion while processing reconfiguration message in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-25711 2022-12-12 23h00 +00:00 Memory corruption in camera due to improper validation of array index in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.8
Haute
CVE-2022-33235 2022-12-12 23h00 +00:00 Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
8.2
Haute
CVE-2022-33238 2022-12-12 23h00 +00:00 Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-33268 2022-12-12 23h00 +00:00 Information disclosure due to buffer over-read in Bluetooth HOST while pairing and connecting A2DP. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.2
Haute
CVE-2022-25671 2022-11-14 23h00 +00:00 Denial of service in MODEM due to reachable assertion in Snapdragon Mobile
7.5
Haute
CVE-2022-25676 2022-11-14 23h00 +00:00 Information disclosure in video due to buffer over-read while parsing avi files in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
6.8
Moyen
CVE-2022-25679 2022-11-14 23h00 +00:00 Denial of service in video due to improper access control in broadcast receivers in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
6.2
Moyen
CVE-2022-25724 2022-11-14 23h00 +00:00 Memory corruption in graphics due to buffer overflow while validating the user address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25741 2022-11-14 23h00 +00:00 Denial of service in WLAN due to potential null pointer dereference while accessing the memory location in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-33236 2022-11-14 23h00 +00:00 Transient DOS due to buffer over-read in WLAN firmware while parsing cipher suite info attributes. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-33237 2022-11-14 23h00 +00:00 Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-33239 2022-11-14 23h00 +00:00 Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-25666 2022-10-18 22h00 +00:00 Memory corruption due to use after free in service while trying to access maps by different threads in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
6.7
Moyen
CVE-2022-25687 2022-10-18 22h00 +00:00 memory corruption in video due to buffer overflow while parsing asf clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25720 2022-10-18 22h00 +00:00 Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25736 2022-10-18 22h00 +00:00 Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-25748 2022-10-18 22h00 +00:00 Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
9.8
Critique
CVE-2022-25749 2022-10-18 22h00 +00:00 Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-25723 2022-10-16 22h00 +00:00 Memory corruption in multimedia due to use after free during callback registration failure in Snapdragon Mobile
8.4
Haute
CVE-2022-33214 2022-10-16 22h00 +00:00 Memory corruption in display due to time-of-check time-of-use of metadata reserved size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-33217 2022-10-16 22h00 +00:00 Memory corruption in Qualcomm IPC due to buffer copy without checking the size of input while starting communication with a compromised kernel. in Snapdragon Mobile
7.8
Haute
CVE-2022-22077 2022-10-11 22h00 +00:00 Memory corruption in graphics due to use-after-free in graphics dispatcher logic in Snapdragon Mobile
8.4
Haute
CVE-2022-25660 2022-10-11 22h00 +00:00 Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2022-25661 2022-10-11 22h00 +00:00 Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2022-25662 2022-10-11 22h00 +00:00 Information disclosure due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-25664 2022-10-11 22h00 +00:00 Information disclosure due to exposure of information while GPU reads the data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
6.2
Moyen
CVE-2022-25665 2022-10-11 22h00 +00:00 Information disclosure due to buffer over read in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile
7.1
Haute
CVE-2022-25708 2022-09-16 03h26 +00:00 Memory corruption in WLAN due to buffer copy without checking size of input while parsing keys in Snapdragon Connectivity, Snapdragon Mobile
9.8
Critique
CVE-2022-25706 2022-09-16 03h26 +00:00 Information disclosure in Bluetooth driver due to buffer over-read while reading l2cap length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.2
Haute
CVE-2022-25696 2022-09-16 03h25 +00:00 Memory corruption in display due to time-of-check time-of-use race condition during map or unmap in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-25693 2022-09-16 03h25 +00:00 Memory corruption in graphics due to use-after-free while graphics profiling in Snapdragon Connectivity, Snapdragon Mobile
8.4
Haute
CVE-2022-25690 2022-09-16 03h25 +00:00 Information disclosure in WLAN due to improper validation of array index while parsing crafted ANQP action frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
7.5
Haute
CVE-2022-25686 2022-09-16 03h25 +00:00 Memory corruption in video module due to buffer overflow while processing WAV file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
9.8
Critique
CVE-2022-25688 2022-09-16 03h25 +00:00 Memory corruption in video due to buffer overflow while parsing ps video clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25670 2022-09-16 03h25 +00:00 Denial of service in WLAN HOST due to buffer over read while unpacking frames in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2022-25669 2022-09-16 03h25 +00:00 Denial of service in video due to buffer over read while parsing MP4 clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2022-25656 2022-09-16 03h25 +00:00 Possible integer overflow and memory corruption due to improper validation of buffer size sent to write to console when computing the payload size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-25653 2022-09-16 03h25 +00:00 Information disclosure in video due to buffer over-read while processing avi file in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
6.8
Moyen
CVE-2022-22094 2022-09-16 03h25 +00:00 memory corruption in Kernel due to race condition while getting mapping reference in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2022-22093 2022-09-16 03h25 +00:00 Memory corruption or temporary denial of service due to improper handling of concurrent hypervisor operations to attach or detach IRQs from virtual interrupt sources in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2022-22092 2022-09-16 03h25 +00:00 Memory corruption in kernel due to use after free issue in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2022-22091 2022-09-16 03h25 +00:00 Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-22081 2022-09-16 03h25 +00:00 Memory corruption in audio module due to integer overflow in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-22089 2022-09-16 03h25 +00:00 Memory corruption in audio while playing record due to improper list handling in two threads in Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2022-22074 2022-09-16 03h25 +00:00 Memory Corruption during wma file playback due to integer overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-22066 2022-09-16 03h25 +00:00 Memory corruption occurs while processing command received from HLOS due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25668 2022-09-02 09h31 +00:00 Memory corruption in video driver due to double free while parsing ASF clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25659 2022-09-02 09h31 +00:00 Memory corruption due to buffer overflow while parsing MKV clips with invalid bitmap size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25658 2022-09-02 09h31 +00:00 Memory corruption due to incorrect pointer arithmetic when attempting to change the endianness in video parser function in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25657 2022-09-02 09h31 +00:00 Memory corruption due to buffer overflow occurs while processing invalid MKV clip which has invalid seek header in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
9.8
Critique
CVE-2022-22096 2022-09-02 09h31 +00:00 Memory corruption in Bluetooth HOST due to stack-based buffer overflow when when extracting data using command length parameter in Snapdragon Connectivity, Snapdragon Mobile
9.8
Critique
CVE-2022-22070 2022-09-02 09h31 +00:00 Memory corruption in audio due to lack of check of invalid routing address into APR Routing table in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.8
Haute
CVE-2022-22067 2022-09-02 09h31 +00:00 Potential memory leak in modem during the processing of NSA RRC Reconfiguration with invalid Radio Bearer Config in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile
7.8
Haute
CVE-2022-22062 2022-09-02 09h31 +00:00 An out-of-bounds read can occur while parsing a server certificate due to improper length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
9.1
Critique
CVE-2022-22059 2022-09-02 09h31 +00:00 Memory corruption due to out of bound read while parsing a video file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2022-22061 2022-09-02 09h31 +00:00 Out of bounds writing is possible while verifying device IDs due to improper length check before copying the data in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile
7.8
Haute
CVE-2021-35134 2022-09-02 09h31 +00:00 Due to insufficient validation of ELF headers, an Incorrect Calculation of Buffer Size can occur in Boot leading to memory corruption in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2021-35133 2022-09-02 09h31 +00:00 Use after free in the synx driver issue while performing other functions during multiple invocation of synx release calls in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
6.7
Moyen
CVE-2021-35109 2022-09-02 09h30 +00:00 Possible address manipulation from APP-NS while APP-S is configuring an RG where it tries to merge the address ranges in Snapdragon Connectivity, Snapdragon Mobile
6.8
Moyen
CVE-2021-35108 2022-09-02 09h30 +00:00 Improper checking of AP-S lock bit while verifying the secure resource group permissions can lead to non secure read and write access in Snapdragon Connectivity, Snapdragon Mobile
6.8
Moyen
CVE-2021-35129 2022-06-14 08h11 +00:00 Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking
7.8
Haute
CVE-2021-35126 2022-06-14 08h11 +00:00 Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2021-35123 2022-06-14 08h11 +00:00 Buffer copy in GATT multi notification due to improper length check for the data coming over-the-air in Snapdragon Connectivity, Snapdragon Industrial IOT
8.8
Haute
CVE-2021-35112 2022-06-14 08h11 +00:00 A user with user level permission can access graphics protected region due to improper access control in register configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2021-35104 2022-06-14 08h11 +00:00 Possible buffer overflow due to improper parsing of headers while playing the FLAC audio clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
9.8
Critique
CVE-2021-35100 2022-06-14 08h11 +00:00 Possible buffer over read due to improper calculation of string length while parsing Id3 tag in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2021-35095 2022-06-14 08h11 +00:00 Improper serialization of message queue client registration can lead to race condition allowing multiple gunyah message clients to register with same label in Snapdragon Connectivity, Snapdragon Mobile
8.4
Haute
CVE-2021-35091 2022-06-14 08h11 +00:00 Possible out of bounds read due to improper typecasting while handling page fault for global memory in Snapdragon Connectivity, Snapdragon Mobile
8.4
Haute
CVE-2021-35071 2022-06-14 08h11 +00:00 Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
5.5
Moyen
CVE-2021-30350 2022-06-14 08h11 +00:00 Lack of MBN header size verification against input buffer can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
8.4
Haute
CVE-2021-30347 2022-06-14 08h11 +00:00 Improper integrity check can lead to race condition between tasks PDCP and RRC? right after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
9.1
Critique
CVE-2021-30344 2022-06-14 08h11 +00:00 Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2021-30343 2022-06-14 08h11 +00:00 Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
9.1
Critique
CVE-2021-30341 2022-06-14 08h10 +00:00 Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
9.8
Critique
CVE-2021-30340 2022-06-14 08h10 +00:00 Reachable assertion due to improper validation of coreset in PDCCH configuration in SA mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-30339 2022-06-14 08h10 +00:00 Reading PRNG output may lead to improper key generation due to lack of buffer validation in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
9
Critique
CVE-2021-30334 2022-06-14 08h10 +00:00 Possible use after free due to lack of null check of DRM file status after file structure is freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-22065 2022-06-14 07h51 +00:00 Out of bound read in WLAN HOST due to improper length check can lead to DOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2022-22064 2022-06-14 07h51 +00:00 Possible buffer over read due to lack of size validation while unpacking frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2021-35116 2022-06-14 07h51 +00:00 APK can load a crafted model into the CDSP which can lead to a compromise of CDSP and other APK`s data executing there in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.7
Haute
CVE-2021-35096 2022-06-14 07h51 +00:00 Improper memory allocation during counter check DLM handling can lead to denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-35092 2022-06-14 07h51 +00:00 Processing DCB/AVB algorithm with an invalid queue index from IOCTL request could lead to arbitrary address modification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
6.7
Moyen
CVE-2021-35087 2022-06-14 07h50 +00:00 Possible null pointer access due to improper validation of system information message to be processed in Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-35086 2022-06-14 07h50 +00:00 Possible buffer over read due to improper validation of SIB type when processing a NR system Information message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-35085 2022-06-14 07h50 +00:00 Possible buffer overflow due to lack of buffer length check during management frame Rx handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.1
Haute
CVE-2021-35084 2022-06-14 07h50 +00:00 Possible out of bound read due to lack of length check of data length for a DIAG event in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
7.1
Haute
CVE-2021-35078 2022-06-14 07h50 +00:00 Possible memory leak due to improper validation of certificate chain length while parsing server certificate chain in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2021-35076 2022-06-14 07h50 +00:00 Possible null pointer dereference due to improper validation of RRC connection reconfiguration message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-35073 2022-06-14 07h50 +00:00 Possible assertion due to improper validation of rank restriction field in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2022-22090 2022-06-14 07h40 +00:00 Memory corruption in audio due to use after free while managing buffers from internal cache in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile
8.4
Haute
CVE-2022-22087 2022-06-14 07h40 +00:00 memory corruption in video due to buffer overflow while parsing mkv clip with no codechecker in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-22086 2022-06-14 07h40 +00:00 Memory corruption in video due to double free while parsing 3gp clip with invalid meta data atoms in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-22085 2022-06-14 07h40 +00:00 Memory corruption in video due to buffer overflow while reading the dts file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-22084 2022-06-14 07h40 +00:00 Memory corruption when extracting qcp audio file due to lack of check on data length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-22083 2022-06-14 07h40 +00:00 Denial of service due to memory corruption while extracting ape header from clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2022-22082 2022-06-14 07h40 +00:00 Memory corruption due to possible buffer overflow while parsing DSF header with corrupted channel count in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2021-35120 2022-06-14 07h40 +00:00 Improper handling between export and release functions on the same handle from client can lead to use after free in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
6.7
Moyen
CVE-2021-35119 2022-06-14 07h40 +00:00 Potential out of Bounds read in FIPS event processing due to improper validation of the length from the firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
5.5
Moyen
CVE-2021-35118 2022-06-14 07h40 +00:00 An out-of-bounds write can occur due to an incorrect input check in the camera driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
6.7
Moyen
CVE-2021-35111 2022-06-14 07h40 +00:00 Improper validation of tag id while RRC sending tag id to MAC can lead to TOCTOU race condition in Snapdragon Connectivity, Snapdragon Mobile
7.5
Haute
CVE-2021-35102 2022-06-14 07h40 +00:00 Possible buffer overflow due to lack of validation for the length of NAI string read from EFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile
7.8
Haute
CVE-2021-35083 2022-06-14 07h40 +00:00 Possible out of bound read due to improper validation of certificate chain in SSL or Internet key exchange in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.1
Critique
CVE-2022-22057 2022-06-13 22h00 +00:00 Use after free in graphics fence due to a race condition while closing fence file descriptor and destroy graphics timeline simultaneously in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute
CVE-2021-35110 2022-04-01 02h40 +00:00 Possible buffer overflow to improper validation of hash segment of file while allocating memory in Snapdragon Connectivity, Snapdragon Mobile
8.8
Haute
CVE-2021-35106 2022-04-01 02h40 +00:00 Possible out of bound read due to improper length calculation of WMI message. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.8
Haute
CVE-2021-35105 2022-04-01 02h40 +00:00 Possible out of bounds access due to improper input validation during graphics profiling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2021-35103 2022-04-01 02h40 +00:00 Possible out of bound write due to improper validation of number of timer values received from firmware while syncing timers in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.8
Haute
CVE-2021-35088 2022-04-01 02h40 +00:00 Possible out of bound read due to improper validation of IE length during SSID IE parse when channel is DFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
9.1
Critique
CVE-2021-30333 2022-04-01 02h40 +00:00 Improper validation of buffer size input to the EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.8
Haute
CVE-2021-30332 2022-04-01 02h40 +00:00 Possible assertion due to improper validation of OTA configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-30331 2022-04-01 02h40 +00:00 Possible buffer overflow due to improper data validation of external commands sent via DIAG interface in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
5.5
Moyen
CVE-2021-30329 2022-04-01 02h40 +00:00 Possible assertion due to improper validation of TCI configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-30328 2022-04-01 02h40 +00:00 Possible assertion due to improper validation of invalid NR CSI-IM resource configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-35077 2022-02-11 09h40 +00:00 Possible use after free scenario in compute offloads to DSP while multiple calls spawn a dynamic process in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2021-35075 2022-02-11 09h40 +00:00 Possible null pointer dereference due to lack of WDOG structure validation during registration in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2021-35074 2022-02-11 09h40 +00:00 Possible integer overflow due to improper fragment datatype while calculating number of fragments in a request message in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
8.4
Haute
CVE-2021-35069 2022-02-11 09h40 +00:00 Improper validation of data length received from DMA buffer can lead to memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
7.8
Haute
CVE-2021-35068 2022-02-11 09h40 +00:00 Lack of null check while freeing the device information buffer in the Bluetooth HFP protocol can lead to a NULL pointer dereference in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2021-30326 2022-02-11 09h40 +00:00 Possible assertion due to improper size validation while processing the DownlinkPreemption IE in an RRC Reconfiguration/RRC Setup message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-30322 2022-02-11 09h40 +00:00 Possible out of bounds write due to improper validation of number of GPIOs configured in an internal parameters array in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2021-30318 2022-02-11 09h40 +00:00 Improper validation of input when provisioning the HDCP key can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2021-30353 2022-01-13 10h40 +00:00 Improper validation of function pointer type with actual function signature can lead to assertion in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2021-30330 2022-01-13 10h40 +00:00 Possible null pointer dereference due to improper validation of APE clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2021-30319 2022-01-13 10h40 +00:00 Possible integer overflow due to improper validation of command length parameters while processing WMI command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music
7.8
Haute
CVE-2021-30314 2022-01-13 10h40 +00:00 Lack of validation for third party application accessing the service can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
6.2
Moyen
CVE-2021-30313 2022-01-13 10h40 +00:00 Use after free condition can occur in wired connectivity due to a race condition while creating and deleting folders in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
6.7
Moyen
CVE-2021-30311 2022-01-13 10h40 +00:00 Possible heap overflow due to lack of index validation before allocating and writing to heap buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2021-30308 2022-01-13 10h40 +00:00 Possible buffer overflow while printing the HARQ memory partition detail due to improper validation of buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
7.8
Haute
CVE-2021-30307 2022-01-13 10h40 +00:00 Possible denial of service due to improper validation of DNS response when DNS client requests with PTR, NAPTR or SRV query type in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT
7.5
Haute
CVE-2021-30301 2022-01-13 10h40 +00:00 Possible denial of service due to out of memory while processing RRC and NAS OTA message in Snapdragon Auto, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute
CVE-2021-30300 2022-01-13 10h40 +00:00 Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when processing the SRS configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
7.5
Haute
CVE-2021-30287 2022-01-13 10h40 +00:00 Possible assertion due to improper validation of symbols configured for PDCCH monitoring in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile
7.5
Haute