CVE-2022-25718

CVE-2022-25718 is a Qualcomm WLAN cryptographic issue described across Snapdragon lineups (Auto, Connectivity, CE/IoT, Industrial IoT, etc.) where an improper check on the return value during the authentication handshake is cited as the root cause. The vulnerability affects Qualcomm closed‑source...

CVE-2022-25749

The CVE-2022-25749 entry describes a Transient Denial-of-Service due to a buffer over-read while parsing MDNS frames in Qualcomm Snapdragon WLAN components (across Snapdragon Auto/Compute/Connectivity, etc.). The root cause is a buffer over-read during MDNS frame parsing; impact is DoS with high ...

CVE-2022-25748

CVE-2022-25748 is a memory corruption vulnerability in Qualcomm WLAN due to an integer overflow that leads to a buffer overflow while parsing GTK frames, affecting multiple Snapdragon platforms (Auto, Compute, Connectivity, etc.). The primary impact is remote network-executable code execution wit...

CVE-2022-3577

An out-of-bounds memory write flaw was found in the Linux kernel’s Kid-friendly Wired Controller driver. This flaw allows a local user to crash or potentially escalate their privileges on the system...

CVE-2022-25652

Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking...

CVE-2022-25652

Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking...

CVE-2022-25652

CVE-2022-25652 concerns cryptographic issues in the BSP for Snapdragon Wired Infrastructure and Networking, caused by improper hash verification within the BSP’s cryptographic checks. The vulnerability is described as affecting BSP cryptographic integrity and confidentiality, with attack potentia...

CVE-2022-25652

Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking...

Ukraine’s Cyberwar Chief Sounds Like He’s Winning

Yurii Shchyhol gives WIRED a rare interview about running the country’s Derzhspetszviazok and the state of the online conflict with Russia...

CVE-2022-22062

CVE-2022-22062 describes an out-of-bounds read during server certificate parsing caused by an improper length check in Qualcomm Snapdragon components (Snapdragon Auto, Compute, Connectivity, and other Snapdragon family products). The issue affects Snapdragon lines including Snapdragon Auto, Compu...

CVE-2021-35129

Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...

CVE-2021-30349

Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired...

CVE-2021-30345

RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking...

CVE-2021-30346

RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking...

CVE-2021-35071

Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired...

CVE-2021-30339

Reading PRNG output may lead to improper key generation due to lack of buffer validation in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking...

Input validation

RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking...

Buffer overflow

Possible buffer over read due to lack of size validation while copying data from DBR buffer to RX buffer and can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired...

Buffer overflow

Reading PRNG output may lead to improper key generation due to lack of buffer validation in Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking...

Memory corruption

Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking...