C-v2x 9150 Firmware@- Security Vulnerabilities and Issues — Page 2 of C-v2x 9150 Firmware@- CVE List

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.

9.1CVSS9.4AI score0.00095EPSS

CVE•added 2024/04/01 3:15 p.m.•61 views

CVE-2024-21453

Transient DOS while decoding message of size that exceeds the available system memory.

7.5CVSS7.6AI score0.00124EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33032

Memory corruption in TZ Secure OS while requesting a memory allocation from TA region.

9.3CVSS7.7AI score0.0006EPSS

CVE•added 2024/12/02 11:15 a.m.•60 views

CVE-2024-33036

Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access.

6.7CVSS6.6AI score0.00018EPSS

CVE•added 2023/10/03 6:15 a.m.•59 views

CVE-2023-22385

Memory Corruption in Data Modem while making a MO call or MT VOLTE call.

9.8CVSS9.1AI score0.00126EPSS

CVE•added 2023/12/05 3:15 a.m.•59 views

CVE-2023-28550

Memory corruption in MPP performance while accessing DSM watermark using external memory address.

7.8CVSS7.9AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•59 views

CVE-2023-33070

Transient DOS in Automotive OS due to improper authentication to the secure IO calls.

7.1CVSS5.8AI score0.00054EPSS

CVE•added 2024/02/06 6:16 a.m.•59 views

CVE-2023-33077

Memory corruption in HLOS while converting from authorization token to HIDL vector.

7.8CVSS7.7AI score0.0002EPSS

CVE•added 2024/01/02 6:15 a.m.•58 views

CVE-2023-33030

Memory corruption in HLOS while running playready use-case.

9.3CVSS7.8AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•55 views

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•53 views

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

6.5CVSS6.1AI score0.00039EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•52 views

CVE-2023-33020

Transient DOS in WLAN Host when an invalid channel (like channel out of range) is received in STA during CSA IE.

7.5CVSS7.6AI score0.00061EPSS

CVE•added 2023/12/05 3:15 a.m.•51 views

CVE-2023-28551

Memory corruption in UTILS when modem processes memory specific Diag commands having arbitrary address values as input arguments.

7.8CVSS8AI score0.0006EPSS

CVE•added 2025/05/06 9:15 a.m.•51 views

CVE-2024-45562

Memory corruption during concurrent access to server info object due to unprotected critical field.

7.8CVSS6.7AI score0.00022EPSS

CVE•added 2025/05/06 9:15 a.m.•50 views

CVE-2024-45564

Memory corruption during concurrent access to server info object due to incorrect reference count update.

7.8CVSS7.8AI score0.00022EPSS

CVE•added 2024/09/02 12:15 p.m.•47 views

CVE-2024-38401

Memory corruption while processing concurrent IOCTL calls.

7.8CVSS7.9AI score0.00039EPSS

CVE•added 2025/05/06 9:15 a.m.•47 views

CVE-2024-45570

Memory corruption may occur during IO configuration processing when the IO port count is invalid.

7.8CVSS6.7AI score0.00022EPSS

CVE•added 2024/07/01 3:15 p.m.•46 views

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

8.4CVSS8.3AI score0.00098EPSS

CVE•added 2025/01/06 11:15 a.m.•46 views

CVE-2024-33067

Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.

6.1CVSS6.3AI score0.00023EPSS

CVE•added 2025/06/03 6:15 a.m.•45 views

CVE-2024-53013

Memory corruption may occur while processing voice call registration with user.

6.6CVSS6.8AI score0.00019EPSS

CVE•added 2024/07/01 3:15 p.m.•43 views

CVE-2024-21462

Transient DOS while loading the TA ELF file.

7.1CVSS6.1AI score0.00082EPSS

CVE•added 2025/02/03 5:15 p.m.•43 views

CVE-2024-38417

Information disclosure while processing IO control commands.

6.1CVSS6.3AI score0.00021EPSS

CVE•added 2025/02/03 5:15 p.m.•43 views

CVE-2024-38418

Memory corruption while parsing the memory map info in IOCTL calls.

7.8CVSS7.9AI score0.00016EPSS

CVE•added 2025/03/03 11:15 a.m.•43 views

CVE-2024-43051

Information disclosure while deriving keys for a session for any Widevine use case.

5.5CVSS7.1AI score0.00014EPSS

CVE•added 2025/03/03 11:15 a.m.•42 views

CVE-2024-43057

Memory corruption while processing command in Glink linux.

7.8CVSS7.5AI score0.00024EPSS

CVE•added 2024/12/02 11:15 a.m.•38 views

CVE-2024-33037

Information disclosure as NPU firmware can send invalid IPC message to NPU driver as the driver doesn`t validate the IPC message received from the firmware.

6.1CVSS6.2AI score0.00025EPSS

CVE•added 2024/12/02 11:15 a.m.•37 views

CVE-2024-33053

Memory corruption when multiple threads try to unregister the CVP buffer at the same time.

6.7CVSS6.8AI score0.00028EPSS

CVE•added 2025/04/07 11:15 a.m.•34 views

CVE-2024-43067

Memory corruption occurs during the copying of read data from the EEPROM because the IO configuration is exposed as shared memory.

7.8CVSS7.1AI score0.00013EPSS

CVE•added 2024/11/04 10:15 a.m.•32 views

CVE-2024-33032

Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it.