Qualcomm SM4375 Firmware

CPE Details

Qualcomm SM4375 Firmware
-
2022-10-20
10h58 +00:00
2022-10-20
14h17 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:o:qualcomm:sm4375_firmware:-:*:*:*:*:*:*:*

Informations

Vendor

qualcomm

Product

sm4375_firmware

Version

-

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-33080 2023-12-05 03h04 +00:00 Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.
7.5
Haute
CVE-2023-33079 2023-12-05 03h04 +00:00 Memory corruption in Audio while running invalid audio recording from ADSP.
7.8
Haute
CVE-2023-33063 2023-12-05 03h04 +00:00 Memory corruption in DSP Services during a remote call from HLOS to DSP.
7.8
Haute
CVE-2023-33054 2023-12-05 03h04 +00:00 Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
9.1
Critique
CVE-2023-33044 2023-12-05 03h04 +00:00 Transient DOS in Data modem while handling TLB control messages from the Network.
7.5
Haute
CVE-2023-33043 2023-12-05 03h04 +00:00 Transient DOS in Modem when a Beam switch request is made with a non-configured BWP.
7.5
Haute
CVE-2023-33042 2023-12-05 03h04 +00:00 Transient DOS in Modem after RRC Setup message is received.
7.5
Haute
CVE-2023-33022 2023-12-05 03h04 +00:00 Memory corruption in HLOS while invoking IOCTL calls from user-space.
8.4
Haute
CVE-2023-33018 2023-12-05 03h04 +00:00 Memory corruption while using the UIM diag command to get the operators name.
7.8
Haute
CVE-2023-33017 2023-12-05 03h03 +00:00 Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.
7.8
Haute
CVE-2023-33059 2023-11-07 05h26 +00:00 Memory corruption in Audio while processing the VOC packet data from ADSP.
7.8
Haute
CVE-2023-33055 2023-11-07 05h26 +00:00 Memory Corruption in Audio while invoking callback function in driver from ADSP.
7.8
Haute
CVE-2023-33035 2023-10-03 05h00 +00:00 Memory corruption while invoking callback function of AFE from ADSP.
7.8
Haute
CVE-2023-33034 2023-10-03 05h00 +00:00 Memory corruption while parsing the ADSP response command.
7.8
Haute
CVE-2023-33029 2023-10-03 05h00 +00:00 Memory corruption in DSP Service during a remote call from HLOS to DSP.
8.4
Haute
CVE-2023-33027 2023-10-03 05h00 +00:00 Transient DOS in WLAN Firmware while parsing rsn ies.
7.5
Haute
CVE-2023-28540 2023-10-03 05h00 +00:00 Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
9.1
Critique
CVE-2023-28560 2023-09-05 06h24 +00:00 Memory corruption in WLAN HAL while processing devIndex from untrusted WMI payload.
7.8
Haute
CVE-2023-21646 2023-09-05 06h23 +00:00 Transient DOS in Modem while processing invalid System Information Block 1.
7.5
Haute
CVE-2023-21644 2023-09-05 06h23 +00:00 Memory corruption in RIL due to Integer Overflow while triggering qcril_uim_request_apdu request.
7.8
Haute
CVE-2023-21636 2023-09-05 06h23 +00:00 Memory Corruption due to improper validation of array index in Linux while updating adn record.
7.8
Haute
CVE-2022-33275 2023-09-05 06h23 +00:00 Memory corruption due to improper validation of array index in WLAN HAL when received lm_itemNum is out of range.
8.4
Haute
CVE-2023-28537 2023-08-08 09h15 +00:00 Memory corruption while allocating memory in COmxApeDec module in Audio.
8.4
Haute
CVE-2023-22666 2023-08-08 09h15 +00:00 Memory Corruption in Audio while playing amrwbplus clips with modified content.
8.4
Haute
CVE-2023-21652 2023-08-08 09h14 +00:00 Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use.
7.7
Haute
CVE-2023-21651 2023-08-08 09h14 +00:00 Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in TEE.
9.3
Critique
CVE-2023-21649 2023-08-08 09h14 +00:00 Memory corruption in WLAN while running doDriverCmd for an unspecific command.
7.8
Haute
CVE-2023-21626 2023-08-08 09h14 +00:00 Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key.
7.1
Haute
CVE-2022-40510 2023-08-08 09h14 +00:00 Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.
9.8
Critique
CVE-2023-21670 2023-06-06 07h39 +00:00 Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.
7.8
Haute
CVE-2023-21659 2023-06-06 07h39 +00:00 Transient DOS in WLAN Firmware while processing frames with missing header fields.
7.5
Haute
CVE-2023-21657 2023-06-06 07h39 +00:00 Memoru corruption in Audio when ADSP sends input during record use case.
7.8
Haute
CVE-2023-21656 2023-06-06 07h39 +00:00 Memory corruption in WLAN HOST while receiving an WMI event from firmware.
7.8
Haute
CVE-2023-21628 2023-06-06 07h39 +00:00 Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.
8.4
Haute
CVE-2022-40536 2023-06-06 07h39 +00:00 Transient DOS due to improper authentication in modem while receiving plain TLB OTA request message from network.
7.5
Haute
CVE-2022-40529 2023-06-06 07h39 +00:00 Memory corruption due to improper access control in kernel while processing a mapping request from root process.
7.8
Haute
CVE-2022-40523 2023-06-06 07h38 +00:00 Information disclosure in Kernel due to indirect branch misprediction.
7.1
Haute
CVE-2022-40521 2023-06-06 07h38 +00:00 Transient DOS due to improper authorization in Modem
7.5
Haute
CVE-2022-40507 2023-06-06 07h38 +00:00 Memory corruption due to double free in Core while mapping HLOS address to the list.
8.4
Haute
CVE-2022-33264 2023-06-06 07h38 +00:00 Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.
7.9
Haute
CVE-2022-33251 2023-06-06 07h38 +00:00 Transient DOS due to reachable assertion in Modem because of invalid network configuration.
7.5
Haute
CVE-2022-33230 2023-06-06 07h38 +00:00 Memory corruption in FM Host due to buffer copy without checking the size of input in FM Host
7.8
Haute
CVE-2022-22076 2023-06-06 07h38 +00:00 information disclosure due to cryptographic issue in Core during RPMB read request.
7.1
Haute
CVE-2022-22060 2023-06-06 07h38 +00:00 Assertion occurs while processing Reconfiguration message due to improper validation
7.5
Haute
CVE-2022-40504 2023-05-02 07h30 +00:00 Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.
7.5
Haute
CVE-2023-21665 2023-05-02 05h08 +00:00 Memory corruption in Graphics while importing a file.
8.4
Haute
CVE-2022-40508 2023-05-02 05h08 +00:00 Transient DOS due to reachable assertion in Modem while processing config related to cross carrier scheduling, which is not supported.
7.5
Haute
CVE-2022-34144 2023-05-02 05h08 +00:00 Transient DOS due to reachable assertion in Modem during OSI decode scheduling.
7.5
Haute
CVE-2022-33305 2023-05-02 05h08 +00:00 Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.
7.5
Haute
CVE-2022-40532 2023-04-04 04h46 +00:00 Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.
8.4
Haute
CVE-2022-40503 2023-04-04 04h46 +00:00 Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.
8.2
Haute
CVE-2022-33302 2023-04-04 04h46 +00:00 Memory corruption due to improper validation of array index in User Identity Module when APN TLV length is greater than command length.
7.8
Haute
CVE-2022-33298 2023-04-04 04h46 +00:00 Memory corruption due to use after free in Modem while modem initialization.
7.8
Haute
CVE-2022-33296 2023-04-04 04h46 +00:00 Memory corruption due to integer overflow to buffer overflow in Modem while parsing Traffic Channel Neighbor List Update message.
7.8
Haute
CVE-2022-33289 2023-04-04 04h46 +00:00 Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.
6.8
Moyen
CVE-2022-33270 2023-04-04 04h46 +00:00 Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message.
7.5
Haute
CVE-2022-33231 2023-04-04 04h46 +00:00 Memory corruption due to double free in core while initializing the encryption key.
9.3
Critique
CVE-2022-40519 2023-01-06 05h02 +00:00 Information disclosure due to buffer overread in Core
6.8
Moyen
CVE-2022-40518 2023-01-06 05h02 +00:00 Information disclosure due to buffer overread in Core
6.8
Moyen
CVE-2022-33286 2023-01-06 05h02 +00:00 Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.
7.5
Haute
CVE-2022-33285 2023-01-06 05h02 +00:00 Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.
7.5
Haute
CVE-2022-33284 2023-01-06 05h02 +00:00 Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.
8.2
Haute
CVE-2022-25725 2023-01-06 05h02 +00:00 Denial of service in MODEM due to improper pointer handling
6.2
Moyen
CVE-2022-22088 2023-01-06 04h42 +00:00 Memory corruption in Bluetooth HOST due to buffer overflow while parsing the command response received from remote
9.8
Critique
CVE-2022-25672 2022-12-12 23h00 +00:00 Denial of service in MODEM due to reachable assertion while processing SIB1 with invalid Bandwidth in Snapdragon Mobile
7.5
Haute
CVE-2022-25682 2022-12-12 23h00 +00:00 Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25691 2022-12-12 23h00 +00:00 Denial of service in Modem due to reachable assertion while processing SIB1 with invalid SCS and bandwidth settings in Snapdragon Mobile
7.5
Haute
CVE-2022-25692 2022-12-12 23h00 +00:00 Denial of service in Modem due to reachable assertion while processing the common config procedure in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-25695 2022-12-12 23h00 +00:00 Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25702 2022-12-12 23h00 +00:00 Denial of service in modem due to reachable assertion while processing reconfiguration message in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
7.5
Haute
CVE-2022-33235 2022-12-12 23h00 +00:00 Information disclosure due to buffer over-read in WLAN firmware while parsing security context info attributes. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
8.2
Haute
CVE-2022-33238 2022-12-12 23h00 +00:00 Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-25676 2022-11-14 23h00 +00:00 Information disclosure in video due to buffer over-read while parsing avi files in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
6.8
Moyen
CVE-2022-25679 2022-11-14 23h00 +00:00 Denial of service in video due to improper access control in broadcast receivers in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
6.2
Moyen
CVE-2022-25724 2022-11-14 23h00 +00:00 Memory corruption in graphics due to buffer overflow while validating the user address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-25743 2022-11-14 23h00 +00:00 Memory corruption in graphics due to use-after-free while importing graphics buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4
Haute
CVE-2022-33234 2022-11-14 23h00 +00:00 Memory corruption in video due to configuration weakness. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
9.8
Critique
CVE-2022-33237 2022-11-14 23h00 +00:00 Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-33239 2022-11-14 23h00 +00:00 Transient DOS due to loop with unreachable exit condition in WLAN firmware while parsing IPV6 extension header. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-25687 2022-10-18 22h00 +00:00 memory corruption in video due to buffer overflow while parsing asf clips in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
9.8
Critique
CVE-2022-25736 2022-10-18 22h00 +00:00 Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-25748 2022-10-18 22h00 +00:00 Memory corruption in WLAN due to integer overflow to buffer overflow while parsing GTK frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
9.8
Critique
CVE-2022-25749 2022-10-18 22h00 +00:00 Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
7.5
Haute
CVE-2022-33214 2022-10-16 22h00 +00:00 Memory corruption in display due to time-of-check time-of-use of metadata reserved size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables
8.4
Haute