Sa9000p Security Vulnerabilities

CVE-2023-21626

Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one...

CVE-2023-21643

Memory corruption due to untrusted pointer dereference in automotive during system...

CVE-2023-21652

Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after...

CVE-2023-21651

Memory Corruption in Core due to incorrect type conversion or cast in secure_io_read/write function in...

CVE-2023-21632

Memory corruption in Automotive GPU while querying a gsl memory...

CVE-2022-40523

Information disclosure in Kernel due to indirect branch...

CVE-2022-40529

Memory corruption due to improper access control in kernel while processing a mapping request from root...

CVE-2022-40507

Memory corruption due to double free in Core while mapping HLOS address to the...

CVE-2022-40533

Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI...

CVE-2022-33307

Memory Corruption due to double free in automotive when a bad HLOS address for one of the lists to be mapped is...

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read...

CVE-2022-33273

Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report...

CVE-2023-21642

Memory corruption in HAB Memory management due to broad system privileges via physical...

CVE-2022-25713

Memory corruption in Automotive due to Improper Restriction of Operations within the Bounds of a Memory Buffer while exporting a shared...

CVE-2022-33288

Memory corruption due to buffer copy without checking the size of input in Core while sending SCM command to get write protection...

CVE-2022-33269

Memory corruption due to integer overflow or wraparound in Core while DDR memory...

CVE-2022-33282

Memory corruption in Automotive Multimedia due to integer overflow to buffer overflow during IOCTL calls in video...

CVE-2022-33231

Memory corruption due to double free in core while initializing the encryption...

CVE-2022-33278

Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer...

CVE-2022-33242

Memory corruption due to improper authentication in Qualcomm IPC while loading unsigned lib in audio...

CVE-2022-33257

Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust...

CVE-2022-33232

Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered...

CVE-2022-33216

Transient Denial-of-service in Automotive due to improper input validation while parsing ELF...

CVE-2022-40520

Memory corruption due to stack-based buffer overflow in...

CVE-2022-40517

Memory corruption in core due to stack-based buffer...

CVE-2022-40518

Information disclosure due to buffer overread in...

CVE-2022-40519

Information disclosure due to buffer overread in...

CVE-2022-40516

Memory corruption in Core due to stack-based buffer...

CVE-2022-33219

Memory corruption in Automotive due to integer overflow to buffer overflow while registering a new listener with shared...

CVE-2022-33218

Memory corruption in Automotive due to improper input...

CVE-2022-25746

Memory corruption in kernel due to missing checks when updating the access rights of a memextent...

CVE-2022-25681

Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...

CVE-2022-33210

Memory corruption in automotive multimedia due to use of out-of-range pointer offset while parsing command request packet with a very large type value. in Snapdragon...

CVE-2022-25660

Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...

CVE-2022-25665

Information disclosure due to buffer over read in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon...

CVE-2022-25661

Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...

CVE-2022-22106

Memory corruption in multimedia due to improper length check while copying the data in Snapdragon...

CVE-2022-22101

Denial of service in multimedia due to uncontrolled resource consumption while parsing an incoming HAB message in Snapdragon...

CVE-2022-22104

Memory corruption in multimedia due to improper check on the messages received. in Snapdragon...

CVE-2022-22100

Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon...

CVE-2021-35135

A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

CVE-2021-35122

Non-secure region can try modifying RG permissions of IO space xPUs due to improper input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...

CVE-2021-35132

Out of bound write in DSP service due to improper bound check for response buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon...

CVE-2022-22099

Memory corruption in multimedia due to improper validation of array index in Snapdragon...

CVE-2021-35097

Possible authentication bypass due to improper order of signature verification and hashing in the signature verification call in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon....

CVE-2022-22103

Memory corruption in multimedia driver due to double free while processing data from user in Snapdragon...

CVE-2021-35114

Improper buffer initialization on the backend driver can lead to buffer overflow in Snapdragon...

CVE-2021-35101

Improper handling of writes to virtual GICR control can lead to assertion failure in the hypervisor in Snapdragon Auto, Snapdragon Compute, Snapdragon...

CVE-2021-35090

Possible hypervisor memory corruption due to TOC TOU race condition when updating address mappings in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon...

CVE-2021-35094

Improper verification of timeout-based authentication in identity credential can lead to invalid authorization in HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon...