Snapdragon Security Vulnerabilities

CVE-2024-23351

Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC...

CVE-2024-21477

Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM)...

CVE-2024-23354

Memory corruption when the IOCTL call is interrupted by a...

CVE-2024-21476

Memory corruption when the channel ID passed by user is not validated and further...

CVE-2024-21480

Memory corruption while playing audio file having large-sized input...

CVE-2023-43530

Memory corruption in HLOS while checking for the storage...

CVE-2024-21474

Memory corruption when size of buffer from previous call is used without validation or...

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol...

CVE-2023-43531

Memory corruption while verifying the serialized header when the key pairs are...

CVE-2024-21471

Memory corruption when IOMMU unmap of a GPU buffer fails in...

CVE-2023-43527

Information disclosure while parsing dts header atom in...

CVE-2023-43524

Memory corruption when the bandpass filter order received from AHAL is not within the expected...

CVE-2023-43528

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected...

CVE-2023-43529

Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is...

CVE-2023-43525

Memory corruption while copying the sound model data from user to kernel buffer during sound model...

CVE-2023-43526

Memory corruption while querying module parameters from Listen Sound model client in kernel from user...

CVE-2023-33119

Memory corruption while loading a VM from a signed VM image that is not coherent in the processor...

CVE-2023-43521

Memory corruption when multiple listeners are being registered with the same file...

CVE-2024-21473

Memory corruption while redirecting log file to any file location with any file...

CVE-2024-21470

Memory corruption while allocating memory for...

CVE-2024-21468

Memory corruption when there is failed unmap operation in...

CVE-2024-21472

Memory corruption in Kernel while handling GPU...

CVE-2024-21453

Transient DOS while decoding message of size that exceeds the available system...

CVE-2024-21454

Transient DOS while decoding the ToBeSignedMessage in Automotive...

CVE-2024-21463

Memory corruption while processing Codec2 during v13k decoder pitch...

CVE-2024-21452

Transient DOS while decoding an ASN.1 OER message containing a SEQUENCE of unknown...

CVE-2023-43515

Memory corruption in HLOS while running kernel address sanitizers (syzkaller) on tmecom with DEBUG_FS...

CVE-2023-33111

Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration...

CVE-2023-33101

Transient DOS while processing DL NAS TRANSPORT message with payload length...

CVE-2023-33100

Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP...

CVE-2023-33115

Memory corruption while processing buffer initialization, when trusted report for certain report types are...

CVE-2023-33099

Transient DOS while processing SMS container of non-standard size received in DL NAS transport in...

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp...

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter...

CVE-2023-43552

Memory corruption while processing MBSSID beacon containing several subelement...

CVE-2023-43553

Memory corruption while parsing beacon/probe response frame when AP sends more supported links in...

CVE-2023-43550

Memory corruption while processing a QMI request for allocating memory from a DHMS supported...

CVE-2023-43549

Memory corruption while processing TPC target power table in FTM...

CVE-2023-43548

Memory corruption while parsing qcp clip with invalid chunk data...

CVE-2023-43541

Memory corruption while invoking the SubmitCommands call on Gfx engine during the graphics...

CVE-2023-43546

Memory corruption while invoking HGSL IOCTL context...

CVE-2023-43547

Memory corruption while invoking IOCTLs calls in Automotive...

CVE-2023-43540

Memory corruption while processing the IOCTL FM HCI WRITE...

CVE-2023-43539

Transient DOS while processing an improperly formatted 802.11az Fine Time Measurement protocol...

CVE-2023-33104

Transient DOS while processing PDU Release command with a parameter PDU ID out of...

CVE-2023-33103

Transient DOS while processing CAG info IE received from...

CVE-2023-33105

Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence...

CVE-2023-33090

Transient DOS while processing channel information for speaker protection v2 module in...

CVE-2023-33086

Transient DOS while processing multiple IKEV2 Informational Request to device from IPSEC server with different...

CVE-2023-33095

Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in...