Qca4004 Firmware Security Vulnerabilities
Possible null pointer dereference in thread cache operation handler due to lack of validation of user provided input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & ...
7.8CVSS
7.6AI Score
0.0004EPSS
Possible assertion due to improper handling of IPV6 packet with invalid length in destination options header in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
7.5CVSS
7.6AI Score
0.001EPSS
Possible integer overflow in access control initialization interface due to lack and size and address validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Network...
8.4CVSS
7.8AI Score
0.0004EPSS
Possible integer overflow in page alignment interface due to lack of address and size validation before alignment in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networ...
9.3CVSS
7.8AI Score
0.0004EPSS
Improper input validation in TrustZone memory transfer interface can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
7.1CVSS
5.5AI Score
0.0004EPSS
Possible unauthorized access to secure space due to improper check of data allowed while flashing the no access control device configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wear...
8.4CVSS
7.6AI Score
0.0004EPSS
Possible out of bound write in RAM partition table due to improper validation on number of partitions provided in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networkin...
8.4CVSS
7.7AI Score
0.0004EPSS
Possible information exposure and denial of service due to NAS not dropping messages when integrity check fails in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdrago...
9.1CVSS
8.8AI Score
0.002EPSS
Improper validation of memory region in Hypervisor can lead to incorrect region mapping in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
9.3CVSS
8.6AI Score
0.0004EPSS
Possible buffer overflow due to lack of range check while processing a DIAG command for COEX management in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.8CVSS
8AI Score
0.0004EPSS
Possible denial of service due to incorrectly decoding hex data for the SIB2 OTA message and assigning a garbage value to choice when processing the SRS configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voic...
7.5CVSS
7.5AI Score
0.001EPSS
Improper validation of maximum size of data write to EFS file can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.8CVSS
7.9AI Score
0.0004EPSS
Improper buffer size validation of DSM packet received can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
9.8CVSS
9.6AI Score
0.002EPSS
Improper integrity check can lead to race condition between tasks PDCP and RRC? after a valid RRC Command packet has been received in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables
9.1CVSS
5.9AI Score
0.001EPSS
Improper authorization of a replayed LTE security mode command can lead to a denial of service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
7.5CVSS
7.6AI Score
0.001EPSS
Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infra...
8.2CVSS
6.8AI Score
0.0004EPSS
information disclosure due to cryptographic issue in Core during RPMB read request.
7.1CVSS
5.2AI Score
0.0004EPSS
Cryptographic issues in WLAN during the group key handshake of the WPA/WPA2 protocol in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music
9.8CVSS
9.3AI Score
0.002EPSS
9.8CVSS
9.4AI Score
0.001EPSS
Memory corruption in MODEM UIM due to usage of out of range pointer offset while decoding command from card in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
8.4CVSS
7.9AI Score
0.0004EPSS
8.4CVSS
7.7AI Score
0.0004EPSS
Memory corruption in MODEM due to Improper Validation of Array Index while processing GSTK Proactive commands in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon ...
8.4CVSS
8AI Score
0.0004EPSS
Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response
7.8CVSS
8AI Score
0.0004EPSS
Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music...
9.8CVSS
9.4AI Score
0.002EPSS
Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & ...
9.1CVSS
9AI Score
0.002EPSS
Information disclosure in modem data due to array out of bound access while handling the incoming DNS response packet
8.2CVSS
7.3AI Score
0.001EPSS
Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music
9.8CVSS
9.3AI Score
0.002EPSS
Information disclosure in modem due to buffer over-read while processing response from DNS server
8.2CVSS
7.4AI Score
0.001EPSS
9.8CVSS
9.5AI Score
0.001EPSS
Information disclosure in modem due to improper check of IP type while processing DNS server query
8.2CVSS
7.3AI Score
0.001EPSS
Information disclosure in modem due to buffer over-read while processing packets from DNS server
7.5CVSS
7.4AI Score
0.001EPSS
Information disclosure in modem due to buffer over read in dns client due to missing length check
8.2CVSS
7.4AI Score
0.001EPSS
Denial of service in modem due to null pointer dereference while processing DNS packets
7.5CVSS
7.4AI Score
0.001EPSS
Denial of service in modem due to missing null check while processing IP packets with padding
7.5CVSS
7.4AI Score
0.001EPSS
Denial of service in modem due to missing null check while processing TCP or UDP packets from server
7.5CVSS
7.4AI Score
0.001EPSS
Information disclosure in modem due to missing NULL check while reading packets received from local network
7.5CVSS
7.2AI Score
0.001EPSS
Information disclosure in modem due to buffer over-red while performing checksum of packet received
8.2CVSS
7.5AI Score
0.001EPSS
Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call
7.5CVSS
7.4AI Score
0.001EPSS
Memory corruption in modem due to buffer overwrite while building an IPv6 multicast address based on the MAC address of the iface
9.8CVSS
9.6AI Score
0.001EPSS
Denial of service in modem due to infinite loop while parsing IGMPv2 packet from server in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music
7.5CVSS
7.5AI Score
0.001EPSS
Memory corruption in modem due to improper input validation while handling the incoming CoAP message
9.8CVSS
9.5AI Score
0.001EPSS
Information disclosure in modem due to improper input validation during parsing of upcoming CoAP message
8.2CVSS
7.3AI Score
0.001EPSS
memory corruption in modem due to improper check while calculating size of serialized CoAP message
9.8CVSS
9.5AI Score
0.001EPSS
8.8CVSS
9.3AI Score
0.001EPSS
Information disclosure due to buffer over-read while parsing DNS response packets in Modem.
8.2CVSS
7.5AI Score
0.001EPSS
Transient DOS in Modem due to null pointer dereference while processing the incoming packet with http chunked encoding.
7.5CVSS
7.4AI Score
0.001EPSS
Information disclosure sue to buffer over-read in modem while processing ipv6 packet with hop-by-hop or destination option in header.
8.2CVSS
7.5AI Score
0.001EPSS
Information disclosure due to buffer over-read in Modem while using static array to process IPv4 packets.
8.2CVSS
7.5AI Score
0.001EPSS
Memory corruption due to double free in core while initializing the encryption key.
9.3CVSS
7.8AI Score
0.0004EPSS
Memory corruption due to configuration weakness in modem wile sending command to write protected files.
7.8CVSS
7.8AI Score
0.0004EPSS