Qca6564a Firmware Security Vulnerabilities and Issues — Qca6564a Firmware CVE List

Lucene search

QualcommQca6564a Firmware

122 matches found

CVE•added 2021/05/07 9:15 a.m.•1120 views

CVE-2021-1905

Possible use after free due to improper handling of memory mapping of multiple processes simultaneously. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8.3AI score0.0113EPSS

CVE•added 2023/04/13 7:15 a.m.•379 views

CVE-2022-40503

Information disclosure due to buffer over-read in Bluetooth Host while A2DP streaming.

8.2CVSS7.7AI score0.00068EPSS

CVE•added 2023/12/05 3:15 a.m.•273 views

CVE-2023-33107

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

8.4CVSS8.3AI score0.00092EPSS

CVE•added 2022/09/02 12:15 p.m.•192 views

CVE-2022-22080

Improper validation of backend id in PCM routing process can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

8.4CVSS7.8AI score0.00053EPSS

CVE•added 2022/06/14 10:15 a.m.•148 views

CVE-2022-22068

kernel event may contain unexpected content which is not generated by NPU software in asynchronous execution mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS7.6AI score0.00037EPSS

CVE•added 2023/03/10 9:15 p.m.•129 views

CVE-2022-33213

Memory corruption in modem due to buffer overflow while processing a PPP packet

8.8CVSS8.5AI score0.00117EPSS

CVE•added 2022/06/14 10:15 a.m.•122 views

CVE-2022-22085

Memory corruption in video due to buffer overflow while reading the dts file in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8.1AI score0.0013EPSS

CVE•added 2022/04/01 5:15 a.m.•114 views

CVE-2021-35105

Possible out of bounds access due to improper input validation during graphics profiling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS7.7AI score0.00101EPSS

CVE•added 2022/06/14 10:15 a.m.•104 views

CVE-2021-30334

Possible use after free due to lack of null check of DRM file status after file structure is freed in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS7.7AI score0.00089EPSS

CVE•added 2023/02/12 4:15 a.m.•102 views

CVE-2022-33243

Memory corruption due to improper access control in Qualcomm IPC.

8.4CVSS8AI score0.00051EPSS

CVE•added 2022/11/15 10:15 a.m.•100 views

CVE-2022-25743

Memory corruption in graphics due to use-after-free while importing graphics buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8AI score0.00057EPSS

CVE•added 2023/05/02 6:15 a.m.•98 views

CVE-2023-21666

Memory Corruption in Graphics while accessing a buffer allocated through the graphics pool.

8.4CVSS8AI score0.0006EPSS

CVE•added 2022/06/14 10:15 a.m.•97 views

CVE-2022-22082

Memory corruption due to possible buffer overflow while parsing DSF header with corrupted channel count in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8.1AI score0.00121EPSS

CVE•added 2021/07/13 6:15 a.m.•95 views

CVE-2021-1940

Use after free can occur due to improper handling of response from firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS7.9AI score0.00021EPSS

CVE•added 2023/02/12 4:15 a.m.•91 views

CVE-2022-33280

Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet.

8.8CVSS8.1AI score0.00084EPSS

CVE•added 2022/09/26 5:15 p.m.•88 views

CVE-2022-22058

Memory corruption due to use after free issue in kernel while processing ION handles in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdr...

8.4CVSS7.8AI score0.00064EPSS

CVE•added 2024/04/01 3:15 p.m.•86 views

CVE-2024-21468

Memory corruption when there is failed unmap operation in GPU.

8.4CVSS8.6AI score0.00044EPSS

CVE•added 2023/04/13 7:15 a.m.•84 views

CVE-2022-40532

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

8.4CVSS8.2AI score0.00051EPSS

CVE•added 2023/06/06 8:15 a.m.•84 views

CVE-2023-21628

Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.

8.4CVSS8.2AI score0.00053EPSS

CVE•added 2022/06/14 10:15 a.m.•82 views

CVE-2022-22084

Memory corruption when extracting qcp audio file due to lack of check on data length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS7.8AI score0.00125EPSS

CVE•added 2023/09/05 7:15 a.m.•81 views

CVE-2023-33021

Memory corruption in Graphics while processing user packets for command submission.

8.4CVSS8.2AI score0.00029EPSS

CVE•added 2021/07/13 6:15 a.m.•80 views

CVE-2021-1886

Incorrect handling of pointers in trusted application key import mechanism could cause memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8.4AI score0.00039EPSS

CVE•added 2023/05/02 6:15 a.m.•80 views

CVE-2023-21665

Memory corruption in Graphics while importing a file.

8.4CVSS8.1AI score0.0007EPSS

CVE•added 2021/07/13 6:15 a.m.•78 views

CVE-2021-1888

Memory corruption in key parsing and import function due to double freeing the same heap allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8.4AI score0.00039EPSS

CVE•added 2021/07/13 6:15 a.m.•78 views

CVE-2021-1889

Possible buffer overflow due to lack of length check in Trusted Application in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8.4AI score0.00035EPSS

CVE•added 2022/04/01 5:15 a.m.•78 views

CVE-2021-35115

Improper handling of multiple session supported by PVM backend can lead to use after free in Snapdragon Auto, Snapdragon Mobile

8.4CVSS7.8AI score0.00044EPSS

CVE•added 2023/08/08 10:15 a.m.•78 views

CVE-2023-28537

Memory corruption while allocating memory in COmxApeDec module in Audio.

8.4CVSS8.1AI score0.00053EPSS

CVE•added 2022/02/11 11:15 a.m.•77 views

CVE-2021-30318

Improper validation of input when provisioning the HDCP key can lead to memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS7.8AI score0.00085EPSS

CVE•added 2022/06/14 10:15 a.m.•76 views

CVE-2021-30281

Possible unauthorized access to secure space due to improper check of data allowed while flashing the no access control device configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wear...

8.4CVSS7.6AI score0.00143EPSS

CVE•added 2023/10/03 6:15 a.m.•76 views

CVE-2023-24849

Information Disclosure in data Modem while parsing an FMTP line in an SDP message.

8.2CVSS7.5AI score0.00137EPSS

CVE•added 2024/07/01 3:15 p.m.•76 views

CVE-2024-23373

Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.

8.4CVSS8.3AI score0.00039EPSS

CVE•added 2021/02/22 7:15 a.m.•75 views

CVE-2020-11269

Possible memory corruption while processing EAPOL frames due to lack of validation of key length before using it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdra...

8.8CVSS8.8AI score0.00074EPSS

CVE•added 2021/07/13 6:15 a.m.•75 views

CVE-2021-1890

Improper length check of public exponent in RSA import key function could cause memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8.2AI score0.00039EPSS

CVE•added 2024/03/04 11:15 a.m.•74 views

CVE-2023-43546

Memory corruption while invoking HGSL IOCTL context create.

8.4CVSS8.7AI score0.0007EPSS

CVE•added 2022/11/15 10:15 a.m.•73 views

CVE-2022-25724

Memory corruption in graphics due to buffer overflow while validating the user address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8.1AI score0.00097EPSS

CVE•added 2023/11/07 6:15 a.m.•73 views

CVE-2023-28572

Memory corruption in WLAN HOST while processing the WLAN scan descriptor list.

8.8CVSS7.3AI score0.00102EPSS

CVE•added 2021/02/22 7:15 a.m.•72 views

CVE-2020-11177

User can overwrite Security Code NV item without knowing current SPC due to improper validation of SPC code setting and device lock in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voic...

8.8CVSS8.7AI score0.00033EPSS

CVE•added 2022/12/13 4:15 p.m.•72 views

CVE-2022-33268

Information disclosure due to buffer over-read in Bluetooth HOST while pairing and connecting A2DP. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.2CVSS8AI score0.00078EPSS

CVE•added 2023/02/12 4:15 a.m.•72 views

CVE-2022-33271

Information disclosure due to buffer over-read in WLAN while parsing NMF frame.

8.2CVSS7.7AI score0.00091EPSS

CVE•added 2023/08/08 10:15 a.m.•72 views

CVE-2023-21625

Information disclosure in Network Services due to buffer over-read while the device receives DNS response.

8.2CVSS7.7AI score0.00074EPSS

CVE•added 2024/03/04 11:15 a.m.•72 views

CVE-2023-43547

Memory corruption while invoking IOCTLs calls in Automotive Multimedia.

8.4CVSS8.6AI score0.00091EPSS

CVE•added 2022/09/16 6:15 a.m.•71 views

CVE-2022-25706

Information disclosure in Bluetooth driver due to buffer over-read while reading l2cap length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

8.2CVSS7.6AI score0.00107EPSS

CVE•added 2023/03/10 9:15 p.m.•71 views

CVE-2022-40531

Memory corruption in WLAN due to incorrect type cast while sending WMI_SCAN_SCH_PRIO_TBL_CMDID message.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2023/10/03 6:15 a.m.•69 views

CVE-2023-21673

Improper Access to the VM resource manager can lead to Memory Corruption.

8.7CVSS7.9AI score0.00024EPSS

CVE•added 2024/04/01 3:15 p.m.•68 views

CVE-2023-33023

Memory corruption while processing finish_sign command to pass a rsp buffer.

8.4CVSS8.7AI score0.00044EPSS

CVE•added 2024/09/02 12:15 p.m.•67 views

CVE-2024-33060

Memory corruption when two threads try to map and unmap a single node simultaneously.

8.4CVSS8.2AI score0.00019EPSS

CVE•added 2022/01/03 8:15 a.m.•65 views

CVE-2021-30335

Possible assertion in QOS request due to improper validation when multiple add or update request are received simultaneously in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon W...

8.4CVSS7.7AI score0.00033EPSS

CVE•added 2024/04/01 3:15 p.m.•65 views

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

8.4CVSS8.7AI score0.00044EPSS

CVE•added 2025/02/03 5:15 p.m.•65 views

CVE-2024-49838

Information disclosure while parsing the OCI IE with invalid length.

8.2CVSS8.1AI score0.00053EPSS

CVE•added 2021/05/07 9:15 a.m.•64 views

CVE-2021-1927

Possible use after free due to lack of null check while memory is being freed in FastRPC driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired In...

8.4CVSS7.7AI score0.00037EPSS

Total number of security vulnerabilities122