Sm4350 Firmware Security Vulnerabilities - CVSS Score 9 - 10
Possible heap overflow while parsing NAL header due to lack of check of length of data received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
9.8CVSS
9.5AI Score
0.002EPSS
Possible buffer over-read while parsing quiet IE in Rx beacon frame due to improper check of IE length in received beacon in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT...
9.1CVSS
9.2AI Score
0.002EPSS
Possible buffer over read while processing P2P IE and NOA attribute of beacon and probe response frames due to improper validation of P2P IE and NOA attribute lengths in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer I...
9.1CVSS
9.1AI Score
0.002EPSS
Memory corruption due to double free in core while initializing the encryption key.
9.3CVSS
7.8AI Score
0.0004EPSS
Cryptographic issue in Data Modem due to improper authentication during TLS handshake.
9.1CVSS
7.5AI Score
0.001EPSS
Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data.
9.1CVSS
9.1AI Score
0.001EPSS