CVE-2022-25711

Memory corruption in camera due to improper validation of array index in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...

CVE-2022-33235

CVE-2022-33235 describes information disclosure due to a buffer over-read in WLAN firmware when parsing security context info attributes. Affected are Qualcomm Snapdragon components across multiple lines, including Snapdragon Auto, Compute, Connectivity, Consumer Electronics Connectivity, Consume...

CVE-2022-25682

This CVE (CVE-2022-25682) concerns memory corruption in the MODEM UIM caused by using an out-of-range pointer offset during decoding a card command, affecting Qualcomm Snapdragon platforms (e.g., Auto, Compute, Connectivity, IOT, Mobile, Wearables). Root cause: out-of-bounds pointer offset during...

CVE-2022-25685

CVE-2022-25685 is a DoS vulnerability in the Modem module caused by improper authorization during error handling, affecting Snapdragon platforms (Auto/Compute/Consumer IOT/Industrial IOT/Mobile/Wearables). The issue lists availability impact as high and is documented with Qualcomm/Android securit...

CVE-2022-25692

CVE-2022-25692 describes a DoS in Qualcomm Snapdragon Modem components (covering Snapdragon Auto/Compute/Industrial IOT/Snapdragon Mobile/Wearables) caused by a reachable assertion during processing of the common config procedure. Affected software is Qualcomm’s Snapdragon modem stack across mult...

CVE-2022-25712

CVE-2022-25712 is a memory corruption issue in the Qualcomm camera stack triggered by a buffer copy that does not validate input size across Snapdragon Auto/Compute/Consumer IOT/Mobile/Wearables. Reported impact includes high confidentiality, integrity, and availability in CVSS analyses with a lo...

CVE-2022-33238

CVE-2022-33238 describes a transient DoS in WLAN processing of incoming FTM frames, caused by a loop with an unreachable exit condition, affecting Snapdragon Auto/Compute/Connectivity and related Snapdragon products. The CVE is documented with a 7.5 (HIGH) CVSS v3.1 base score (Network, Low compl...

CVE-2022-25711

CVE-2022-25711 is a memory corruption issue in Qualcomm Snapdragon camera drivers caused by improper validation of an array index, affecting Snapdragon Auto, Compute, Consumer IOT, Industrial IOT, Mobile, and Wearables. The vulnerability leads to memory corruption in the camera stack; CVSS metric...

CVE-2022-25681

CVE-2022-25681 describes memory corruption in the kernel caused by the hypervisor not correctly invalidating processor translation caches for Qualcomm Snapdragon platforms (Auto, Compute, Consumer IOT, Industrial IOT, Mobile). Affected component scope is the kernel in Snapdragon’s virtualization ...

CVE-2022-25677

CVE-2022-25677 is described as memory corruption in the diag component caused by a use-after-free while processing a DCI packet in Qualcomm Snapdragon platforms (Auto, Compute, Consumer IoT, Industrial IoT, Mobile, Wearables, Wired Infrastructure and Networking). The vulnerability affects Snapdra...

CVE-2022-25675

The CVE-2022-25675 entry describes a Denial of Service caused by a reachable assertion in the modem when processing a filter rule from an application client, affecting Qualcomm Snapdragon Compute, Snapdragon Industrial IOT, and Snapdragon Mobile. The issue is local, with low privileges required a...

PT-2022-21752 · Qualcomm · Snapdragon Connectivity +9

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: The issue is related to information disclosure due to a buffer over-read in WLAN firmware. This occurs while parsing security context info attributes, potentially exposing...

CVE-2022-25692

Denial of service in Modem due to reachable assertion while processing the common config procedure in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...

CVE-2022-25685

Denial of service in Modem module due to improper authorization while error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...

NVIDIA D3D10 Driver Shader Functionality MOV instruction memory corruption vulnerability

Talos Vulnerability Report TALOS-2022-1603 NVIDIA D3D10 Driver Shader Functionality MOV instruction memory corruption vulnerability December 6, 2022 CVE Number CVE-2022-34671 SUMMARY A memory corruption vulnerability exists in the Shader Functionality MOV instruction index functionality of NVIDIA...

NVIDIA D3D10 Driver Shader Functionality DCL_INDEXRANGE instruction memory corruption vulnerability

Talos Vulnerability Report TALOS-2022-1604 NVIDIA D3D10 Driver Shader Functionality DCLINDEXRANGE instruction memory corruption vulnerability December 6, 2022 CVE Number CVE-2022-34671 SUMMARY A memory corruption vulnerability exists in the Shader Functionality DCLINDEXRANGE instruction...

Virtuozzo Hybrid Infrastructure 5.3 Hotfix 1 (5.3.0-132)

This update provides important stability fixes. Vulnerability id: VSTOR-59696 Some compute alerts may not be raised. Vulnerability id: VSTOR-59714, VSTOR-60216 Stability fixes for the core storage...

CVE-2022-33236

Transient DOS due to buffer over-read in WLAN firmware while parsing cipher suite info attributes. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

CVE-2022-25741

Denial of service in WLAN due to potential null pointer dereference while accessing the memory location in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...

CVE-2022-33237

Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music,...