Qam8295p Firmware Security Vulnerabilities and Issues — Page 6 of Qam8295p Firmware CVE List

Transient DOS due to buffer over-read in WLAN firmware while processing PPE threshold. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snap...

7.5CVSS7.7AI score0.00165EPSS

CVE•added 2023/01/09 8:15 a.m.•55 views

CVE-2022-33284

Information disclosure due to buffer over-read in WLAN while parsing BTM action frame.

8.2CVSS6.8AI score0.00091EPSS

CVE•added 2023/06/06 8:15 a.m.•55 views

CVE-2022-40533

Transient DOS due to untrusted Pointer Dereference in core while sending USB QMI request.

6.2CVSS5.7AI score0.00044EPSS

CVE•added 2023/12/05 3:15 a.m.•55 views

CVE-2023-33017

Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2025/05/06 9:15 a.m.•55 views

CVE-2025-21460

Memory corruption while processing a message, when the buffer is controlled by a Guest VM, the value can be changed continuously.

7.8CVSS8AI score0.00033EPSS

CVE•added 2022/12/13 4:15 p.m.•54 views

CVE-2022-33238

Transient DOS due to loop with unreachable exit condition in WLAN while processing an incoming FTM frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mo...

7.5CVSS7.6AI score0.00182EPSS

CVE•added 2023/01/09 8:15 a.m.•54 views

CVE-2022-33253

Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.

7.5CVSS5.9AI score0.00112EPSS

CVE•added 2023/01/09 8:15 a.m.•54 views

CVE-2022-40518

Information disclosure due to buffer overread in Core

6.8CVSS5.7AI score0.00047EPSS

CVE•added 2023/01/09 8:15 a.m.•54 views

CVE-2022-40520

Memory corruption due to stack-based buffer overflow in Core

8.4CVSS8.3AI score0.04308EPSS

CVE•added 2023/07/04 5:15 a.m.•54 views

CVE-2023-22667

Memory Corruption in Audio while allocating the ion buffer during the music playback.

8.4CVSS8.1AI score0.00051EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2023-28573

Memory corruption in WLAN HAL while parsing WMI command parameters.

7.8CVSS8AI score0.00033EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2023-33015

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

7.5CVSS7.5AI score0.00071EPSS

CVE•added 2025/01/06 11:15 a.m.•54 views

CVE-2024-45555

Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows unauthorized programs to be injected into security-sensitive images, enabling the booting of a tampered IFS2 system image.

8.4CVSS8.5AI score0.00029EPSS

CVE•added 2025/01/06 11:15 a.m.•54 views

CVE-2024-45559

Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend.

5.5CVSS5.5AI score0.00028EPSS

CVE•added 2022/11/15 10:15 a.m.•53 views

CVE-2022-25710

Denial of service due to null pointer dereference when GATT is disconnected in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

7.5CVSS7.5AI score0.00218EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-33252

Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.

8.2CVSS6AI score0.00063EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-33276

Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2023/06/06 8:15 a.m.•53 views

CVE-2023-21632

Memory corruption in Automotive GPU while querying a gsl memory node.

8.4CVSS8AI score0.00053EPSS

CVE•added 2023/12/05 3:15 a.m.•53 views

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

6.5CVSS6.1AI score0.00039EPSS

CVE•added 2023/12/05 3:15 a.m.•53 views

CVE-2023-33024

Memory corruption while sending SMS from AP firmware.

7.8CVSS7.2AI score0.0004EPSS

CVE•added 2025/05/06 9:15 a.m.•53 views

CVE-2024-49845

Memory corruption during the FRS UDS generation process.

7.8CVSS7.9AI score0.00033EPSS

CVE•added 2022/09/02 12:15 p.m.•52 views

CVE-2022-22100

Memory corruption in multimedia due to improper check on received export descriptors in Snapdragon Auto

8.4CVSS7.8AI score0.00118EPSS

CVE•added 2022/09/02 12:15 p.m.•52 views

CVE-2022-22104

Memory corruption in multimedia due to improper check on the messages received. in Snapdragon Auto

8.4CVSS7.8AI score0.00118EPSS

CVE•added 2022/10/19 11:15 a.m.•52 views

CVE-2022-33210

Memory corruption in automotive multimedia due to use of out-of-range pointer offset while parsing command request packet with a very large type value. in Snapdragon Auto

8.4CVSS7.9AI score0.00081EPSS

CVE•added 2023/07/04 5:15 a.m.•52 views

CVE-2023-21633

Memory Corruption in Linux while processing QcRilRequestImsRegisterMultiIdentityMessage request.

7.8CVSS6.8AI score0.00029EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•52 views

CVE-2023-28548

Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.

7.8CVSS8AI score0.00024EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33089

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

7.5CVSS7.7AI score0.00222EPSS

CVE•added 2024/01/02 6:15 a.m.•52 views

CVE-2023-33112

Transient DOS when WLAN firmware receives "reassoc response" frame including RIC_DATA element.

7.5CVSS7.5AI score0.00229EPSS

CVE•added 2024/02/06 6:16 a.m.•52 views

CVE-2023-43517

Memory corruption in Automotive Multimedia due to improper access control in HAB.

8.4CVSS7.7AI score0.00048EPSS

CVE•added 2024/10/07 1:15 p.m.•52 views

CVE-2024-38397

Transient DOS while parsing probe response and assoc response frame.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2022/10/19 11:15 a.m.•51 views

CVE-2022-25662

Information disclosure due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.5CVSS7.3AI score0.0021EPSS

CVE•added 2024/07/01 3:15 p.m.•51 views

CVE-2024-21469

Memory corruption when an invoke call and a TEE call are bound for the same trusted application.

7.8CVSS7.4AI score0.00091EPSS

CVE•added 2024/05/06 3:15 p.m.•51 views

CVE-2024-21480

Memory corruption while playing audio file having large-sized input buffer.

9.8CVSS7.1AI score0.00098EPSS

CVE•added 2025/05/06 9:15 a.m.•51 views

CVE-2024-45562

Memory corruption during concurrent access to server info object due to unprotected critical field.

7.8CVSS6.7AI score0.00022EPSS

CVE•added 2025/05/06 9:15 a.m.•51 views

CVE-2024-49844

Memory corruption while triggering commands in the PlayReady Trusted application.

7.8CVSS8AI score0.00033EPSS

CVE•added 2022/10/19 11:15 a.m.•50 views

CVE-2022-25661

Memory corruption due to untrusted pointer dereference in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

8.4CVSS7.7AI score0.00093EPSS

CVE•added 2023/12/05 3:15 a.m.•50 views

CVE-2023-33022

Memory corruption in HLOS while invoking IOCTL calls from user-space.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2025/01/06 11:15 a.m.•50 views

CVE-2024-33041

Memory corruption when input parameter validation for number of fences is missing for fence frame IOCTL calls,

7.8CVSS6.8AI score0.00023EPSS

CVE•added 2025/01/06 11:15 a.m.•50 views

CVE-2024-43064

Uncontrolled resource consumption when a driver, an application or a SMMU client tries to access the global registers through SMMU.