Snapdragon 427 Mobile Platform Firmware Security Vulnerabilities - 2023

CVE-2022-22076

information disclosure due to cryptographic issue in Core during RPMB read request.

CVE-2022-33264

Memory corruption in modem due to stack based buffer overflow while parsing OTASP Key Generation Request Message.

CVE-2022-40521

Transient DOS due to improper authorization in Modem

CVE-2023-24850

Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application.

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.