Snapdragon Security Vulnerabilities

CVE-2024-23360

Memory corruption while creating a LPAC client as LPAC engine was allowed to access GPU...

CVE-2024-23363

Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management...

CVE-2024-21478

transient DOS when setting up a fence callback to free a KGSL memory entry object during...

CVE-2023-43555

Information disclosure in Video while parsing mp2 clip with invalid section...

CVE-2023-43556

Memory corruption in Hypervisor when platform information mentioned is not...

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode...

CVE-2023-43544

Memory corruption when IPC callback handle is used after it has been released during register callback by another...

CVE-2023-43542

Memory corruption while copying a keyblobs material when the key materials size is not accurately...

CVE-2023-43545

Memory corruption when more scan frequency list or channels are sent from the user...

CVE-2023-43543

Memory corruption in Audio during a playback or a recording due to race condition between allocation and deallocation of graph...

CVE-2023-43538

Memory corruption in TZ Secure OS while Tunnel Invoke Manager...

CVE-2023-43537

Information disclosure while handling T2LM Action Frame in WLAN...

CVE-2024-23351

Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC...

CVE-2024-21477

Transient DOS while parsing a protected 802.11az Fine Time Measurement (FTM)...

CVE-2024-23354

Memory corruption when the IOCTL call is interrupted by a...

CVE-2024-21476

Memory corruption when the channel ID passed by user is not validated and further...

CVE-2024-21480

Memory corruption while playing audio file having large-sized input...

CVE-2024-21474

Memory corruption when size of buffer from previous call is used without validation or...

CVE-2023-43530

Memory corruption in HLOS while checking for the storage...

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol...

CVE-2023-43531

Memory corruption while verifying the serialized header when the key pairs are...

CVE-2024-21471

Memory corruption when IOMMU unmap of a GPU buffer fails in...

CVE-2023-43527

Information disclosure while parsing dts header atom in...

CVE-2023-43524

Memory corruption when the bandpass filter order received from AHAL is not within the expected...

CVE-2023-43528

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected...

CVE-2023-43529

Transient DOS while processing IKEv2 Informational request messages, when a malformed fragment packet is...

CVE-2023-43525

Memory corruption while copying the sound model data from user to kernel buffer during sound model...

CVE-2023-43526

Memory corruption while querying module parameters from Listen Sound model client in kernel from user...

CVE-2023-33119

Memory corruption while loading a VM from a signed VM image that is not coherent in the processor...

CVE-2023-43521

Memory corruption when multiple listeners are being registered with the same file...

CVE-2024-21473

Memory corruption while redirecting log file to any file location with any file...

CVE-2024-21470

Memory corruption while allocating memory for...

CVE-2024-21472

Memory corruption in Kernel while handling GPU...

CVE-2024-21468

Memory corruption when there is failed unmap operation in...

CVE-2024-21453

Transient DOS while decoding message of size that exceeds the available system...

CVE-2024-21454

Transient DOS while decoding the ToBeSignedMessage in Automotive...

CVE-2024-21463

Memory corruption while processing Codec2 during v13k decoder pitch...

CVE-2024-21452

Transient DOS while decoding an ASN.1 OER message containing a SEQUENCE of unknown...

CVE-2023-43515

Memory corruption in HLOS while running kernel address sanitizers (syzkaller) on tmecom with DEBUG_FS...

CVE-2023-33111

Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration...

CVE-2023-33101

Transient DOS while processing DL NAS TRANSPORT message with payload length...

CVE-2023-33100

Transient DOS while processing DL NAS Transport message when message ID is not defined in the 3GPP...

CVE-2023-33115

Memory corruption while processing buffer initialization, when trusted report for certain report types are...

CVE-2023-33099

Transient DOS while processing SMS container of non-standard size received in DL NAS transport in...

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp...

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter...

CVE-2023-43552

Memory corruption while processing MBSSID beacon containing several subelement...

CVE-2023-43553

Memory corruption while parsing beacon/probe response frame when AP sends more supported links in...

CVE-2023-43550

Memory corruption while processing a QMI request for allocating memory from a DHMS supported...

CVE-2023-43549

Memory corruption while processing TPC target power table in FTM...