Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Sxr2130 Firmware Security Vulnerabilities

cve
cve

CVE-2023-28577

In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.

7.8CVSS

7.5AI Score

0.0004EPSS

2023-08-08 10:15 AM
37
cve
cve

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

8.8CVSS

8.8AI Score

0.0004EPSS

2023-12-05 03:15 AM
32
cve
cve

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

6.5CVSS

6.4AI Score

0.0004EPSS

2023-12-05 03:15 AM
27
cve
cve

CVE-2023-28587

Memory corruption in BT controller while parsing debug commands with specific sub-opcodes at HCI interface level.

7.8CVSS

7.9AI Score

0.0004EPSS

2023-12-05 03:15 AM
28
cve
cve

CVE-2023-28588

Transient DOS in Bluetooth Host while rfc slot allocation.

7.5CVSS

7.5AI Score

0.0005EPSS

2023-12-05 03:15 AM
36
cve
cve

CVE-2023-33015

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

7.5CVSS

7.5AI Score

0.0005EPSS

2023-09-05 07:15 AM
33
cve
cve

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

7.8CVSS

7.7AI Score

0.0004EPSS

2023-12-05 03:15 AM
25
cve
cve

CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name.

7.8CVSS

7.8AI Score

0.0004EPSS

2023-12-05 03:15 AM
32
cve
cve

CVE-2023-33021

Memory corruption in Graphics while processing user packets for command submission.

8.4CVSS

7.9AI Score

0.0004EPSS

2023-09-05 07:15 AM
39
cve
cve

CVE-2023-33022

Memory corruption in HLOS while invoking IOCTL calls from user-space.

8.4CVSS

7.8AI Score

0.0004EPSS

2023-12-05 03:15 AM
25
cve
cve

CVE-2023-33024

Memory corruption while sending SMS from AP firmware.

7.8CVSS

7.8AI Score

0.0004EPSS

2023-12-05 03:15 AM
32
cve
cve

CVE-2023-33026

Transient DOS in WLAN Firmware while parsing a NAN management frame.

7.5CVSS

7.5AI Score

0.0004EPSS

2023-10-03 06:15 AM
30
cve
cve

CVE-2023-33027

Transient DOS in WLAN Firmware while parsing rsn ies.

7.5CVSS

7.5AI Score

0.0004EPSS

2023-10-03 06:15 AM
37
cve
cve

CVE-2023-33028

Memory corruption in WLAN Firmware while doing a memory copy of pmk cache.

9.8CVSS

8.3AI Score

0.001EPSS

2023-10-03 06:15 AM
40
cve
cve

CVE-2023-33030

Memory corruption in HLOS while running playready use-case.

9.3CVSS

7.8AI Score

0.0004EPSS

2024-01-02 06:15 AM
30
cve
cve

CVE-2023-33031

Memory corruption in Automotive Audio while copying data from ADSP shared buffer to the VOC packet data buffer.

7.8CVSS

7.8AI Score

0.0004EPSS

2023-11-07 06:15 AM
35
cve
cve

CVE-2023-33033

Memory corruption in Audio during playback with speaker protection.

8.4CVSS

7.8AI Score

0.0004EPSS

2024-01-02 06:15 AM
30
cve
cve

CVE-2023-33035

Memory corruption while invoking callback function of AFE from ADSP.

7.8CVSS

7.8AI Score

0.0004EPSS

2023-10-03 06:15 AM
34
cve
cve

CVE-2023-33036

Permanent DOS in Hypervisor while untrusted VM without PSCI support makes a PSCI call.

7.1CVSS

5.5AI Score

0.0004EPSS

2024-01-02 06:15 AM
37
cve
cve

CVE-2023-33037

Cryptographic issue in Automotive while unwrapping the key secs2d and verifying with RPMB data.

7.1CVSS

5.5AI Score

0.0004EPSS

2024-01-02 06:15 AM
35
cve
cve

CVE-2023-33038

Memory corruption while receiving a message in Bus Socket Transport Server.

7.8CVSS

7.7AI Score

0.0004EPSS

2024-01-02 06:15 AM
27
cve
cve

CVE-2023-33040

Transient DOS in Data Modem during DTLS handshake.

7.5CVSS

7.5AI Score

0.0005EPSS

2024-01-02 06:15 AM
28
cve
cve

CVE-2023-33042

Transient DOS in Modem after RRC Setup message is received.

7.5CVSS

7.5AI Score

0.0005EPSS

2023-12-05 03:15 AM
32
cve
cve

CVE-2023-33044

Transient DOS in Data modem while handling TLB control messages from the Network.

7.5CVSS

7.5AI Score

0.0005EPSS

2023-12-05 03:15 AM
38
cve
cve

CVE-2023-33047

Transient DOS in WLAN Firmware while parsing no-inherit IES.

7.5CVSS

7.5AI Score

0.0004EPSS

2023-11-07 06:15 AM
35
cve
cve

CVE-2023-33049

Transient DOS in Multi-Mode Call Processor due to UE failure because of heap leakage.

7.5CVSS

7.5AI Score

0.0005EPSS

2024-02-06 06:15 AM
39
cve
cve

CVE-2023-33054

Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.

9.1CVSS

9.1AI Score

0.001EPSS

2023-12-05 03:15 AM
36
cve
cve

CVE-2023-33055

Memory Corruption in Audio while invoking callback function in driver from ADSP.

7.8CVSS

7.6AI Score

0.0004EPSS

2023-11-07 06:15 AM
32
cve
cve

CVE-2023-33057

Transient DOS in Multi-Mode Call Processor while processing UE policy container.

7.5CVSS

7.5AI Score

0.0005EPSS

2024-02-06 06:15 AM
39
cve
cve

CVE-2023-33059

Memory corruption in Audio while processing the VOC packet data from ADSP.

7.8CVSS

7.8AI Score

0.0004EPSS

2023-11-07 06:15 AM
35
cve
cve

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

7.5CVSS

7.5AI Score

0.0004EPSS

2024-01-02 06:15 AM
31
cve
cve

CVE-2023-33063

Memory corruption in DSP Services during a remote call from HLOS to DSP.

7.8CVSS

8.1AI Score

0.001EPSS

2023-12-05 03:15 AM
139
In Wild
cve
cve

CVE-2023-33064

Transient DOS in Audio when invoking callback function of ASM driver.

5.5CVSS

5.5AI Score

0.0004EPSS

2024-02-06 06:15 AM
38
cve
cve

CVE-2023-33065

Information disclosure in Audio while accessing AVCS services from ADSP payload.

7.1CVSS

6.8AI Score

0.0004EPSS

2024-02-06 06:15 AM
38
cve
cve

CVE-2023-33067

Memory corruption in Audio while calling START command on host voice PCM multiple times for the same RX or TX tap points.

7.8CVSS

7.9AI Score

0.0004EPSS

2024-02-06 06:16 AM
31
cve
cve

CVE-2023-33068

Memory corruption in Audio while processing IIR config data from AFE calibration block.

7.8CVSS

7.8AI Score

0.0004EPSS

2024-02-06 06:16 AM
39
cve
cve

CVE-2023-33069

Memory corruption in Audio while processing the calibration data returned from ACDB loader.

7.8CVSS

7.8AI Score

0.0004EPSS

2024-02-06 06:16 AM
30
cve
cve

CVE-2023-33072

Memory corruption in Core while processing control functions.

9.3CVSS

7.8AI Score

0.0004EPSS

2024-02-06 06:16 AM
37
cve
cve

CVE-2023-33076

Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.

7.8CVSS

7.8AI Score

0.0004EPSS

2024-02-06 06:16 AM
37
cve
cve

CVE-2023-33077

Memory corruption in HLOS while converting from authorization token to HIDL vector.

7.8CVSS

7.7AI Score

0.0004EPSS

2024-02-06 06:16 AM
34
cve
cve

CVE-2023-33079

Memory corruption in Audio while running invalid audio recording from ADSP.

7.8CVSS

7.8AI Score

0.0004EPSS

2023-12-05 03:15 AM
33
cve
cve

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

7.5CVSS

7.5AI Score

0.0004EPSS

2023-12-05 03:15 AM
27
cve
cve

CVE-2023-33081

Transient DOS while converting TWT (Target Wake Time) frame parameters in the OTA broadcast.

7.5CVSS

7.5AI Score

0.0005EPSS

2023-12-05 03:15 AM
26
cve
cve

CVE-2023-33088

Memory corruption when processing cmd parameters while parsing vdev.

8.4CVSS

7.8AI Score

0.0004EPSS

2023-12-05 03:15 AM
24
cve
cve

CVE-2023-33089

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

7.5CVSS

7.6AI Score

0.0004EPSS

2023-12-05 03:15 AM
29
cve
cve

CVE-2023-33094

Memory corruption while running VK synchronization with KASAN enabled.

8.4CVSS

7.8AI Score

0.0004EPSS

2024-01-02 06:15 AM
33
cve
cve

CVE-2023-33098

Transient DOS while parsing WPA IES, when it is passed with length more than expected size.

7.5CVSS

7.5AI Score

0.0004EPSS

2023-12-05 03:15 AM
28
cve
cve

CVE-2023-33106

Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.

8.4CVSS

8.2AI Score

0.001EPSS

2023-12-05 03:15 AM
146
In Wild
cve
cve

CVE-2023-33107

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

8.4CVSS

8.2AI Score

0.001EPSS

2023-12-05 03:15 AM
134
In Wild
cve
cve

CVE-2023-33109

Transient DOS while processing a WMI P2P listen start command (0xD00A) sent from host.

7.5CVSS

7.6AI Score

0.0005EPSS

2024-01-02 06:15 AM
28
Total number of security vulnerabilities360