Qca6574a Firmware Security Vulnerabilities and Issues — Page 3 of Qca6574a Firmware CVE List

Lucene search

QualcommQca6574a Firmware

773 matches found

CVE•added 2023/11/07 6:15 a.m.•106 views

CVE-2023-33055

Memory Corruption in Audio while invoking callback function in driver from ADSP.

7.8CVSS7.7AI score0.00062EPSS

CVE•added 2024/01/02 6:15 a.m.•106 views

CVE-2023-33094

Memory corruption while running VK synchronization with KASAN enabled.

8.4CVSS7.8AI score0.00078EPSS

CVE•added 2024/01/02 6:15 a.m.•106 views

CVE-2023-33114

Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time.

8.4CVSS7.9AI score0.00112EPSS

CVE•added 2024/01/02 6:15 a.m.•106 views

CVE-2023-33117

Memory corruption when HLOS allocates the response payload buffer to copy the data received from ADSP in response to AVCS_LOAD_MODULE command.

7.8CVSS7.8AI score0.0011EPSS

CVE•added 2024/03/04 11:15 a.m.•106 views

CVE-2023-43546

Memory corruption while invoking HGSL IOCTL context create.

8.4CVSS8.7AI score0.00095EPSS

CVE•added 2024/07/01 3:15 p.m.•106 views

CVE-2024-23373

Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.

8.4CVSS8.3AI score0.00112EPSS

CVE•added 2025/05/06 9:15 a.m.•106 views

CVE-2025-21468

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.

7.8CVSS8AI score0.00022EPSS

CVE•added 2021/09/17 7:15 a.m.•105 views

CVE-2021-1976

A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Ne...

10CVSS9.3AI score0.00285EPSS

CVE•added 2025/01/06 11:15 a.m.•105 views

CVE-2024-45558

Transient DOS can occur when the driver parses the per STA profile IE and tries to access the EXTN element ID without checking the IE length.

7.5CVSS7.5AI score0.00133EPSS

CVE•added 2021/09/08 12:15 p.m.•104 views

CVE-2020-11264

Improper authentication of Non-EAPOL/WAPI plaintext frames during four-way handshake can lead to arbitrary network packet injection in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap...

10CVSS8.1AI score0.00263EPSS

CVE•added 2021/09/09 8:15 a.m.•104 views

CVE-2021-1941

Possible buffer over read issue due to improper length check on WPA IE string sent by peer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, ...

7.8CVSS7.6AI score0.00371EPSS

CVE•added 2023/10/03 6:15 a.m.•104 views

CVE-2023-33035

Memory corruption while invoking callback function of AFE from ADSP.

7.8CVSS7.9AI score0.0006EPSS

CVE•added 2023/11/07 6:15 a.m.•104 views

CVE-2023-33074

Memory corruption in Audio when SSR event is triggered after music playback is stopped.

8.4CVSS8.1AI score0.0003EPSS

CVE•added 2024/03/04 11:15 a.m.•104 views

CVE-2023-43547

Memory corruption while invoking IOCTLs calls in Automotive Multimedia.

8.4CVSS8.6AI score0.00095EPSS

CVE•added 2022/04/01 5:15 a.m.•103 views

CVE-2021-30332

Possible assertion due to improper validation of OTA configuration in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.5CVSS7.6AI score0.0026EPSS

CVE•added 2022/06/14 10:15 a.m.•103 views

CVE-2022-22064

Possible buffer over read due to lack of size validation while unpacking frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon W...

7.8CVSS7.6AI score0.00369EPSS

CVE•added 2022/12/13 4:15 p.m.•103 views

CVE-2022-33268

Information disclosure due to buffer over-read in Bluetooth HOST while pairing and connecting A2DP. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.2CVSS8AI score0.00097EPSS

CVE•added 2023/12/05 3:15 a.m.•103 views

CVE-2023-33087

Memory corruption in Core while processing RX intent request.

7.8CVSS7.9AI score0.0006EPSS

CVE•added 2021/09/08 12:15 p.m.•102 views

CVE-2020-11301

Improper authentication of un-encrypted plaintext Wi-Fi frames in an encrypted network can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT...

9.1CVSS7.2AI score0.02348EPSS

CVE•added 2022/02/11 11:15 a.m.•102 views

CVE-2021-30326

Possible assertion due to improper size validation while processing the DownlinkPreemption IE in an RRC Reconfiguration/RRC Setup message in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.5CVSS7.6AI score0.0026EPSS

CVE•added 2022/11/15 10:15 a.m.•102 views

CVE-2022-25724

Memory corruption in graphics due to buffer overflow while validating the user address in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8.1AI score0.00122EPSS

CVE•added 2022/09/16 6:15 a.m.•101 views

CVE-2022-25706

Information disclosure in Bluetooth driver due to buffer over-read while reading l2cap length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

8.2CVSS7.6AI score0.00107EPSS

CVE•added 2023/07/04 5:15 a.m.•101 views

CVE-2023-28541

Memory Corruption in Data Modem while processing DMA buffer release event about CFR data.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2023/11/07 6:15 a.m.•101 views

CVE-2023-28572

Memory corruption in WLAN HOST while processing the WLAN scan descriptor list.

8.8CVSS7.3AI score0.00102EPSS

CVE•added 2023/09/05 7:15 a.m.•101 views

CVE-2023-33019

Transient DOS in WLAN Host while doing channel switch announcement (CSA), when a mobile station receives invalid channel in CSA IE.

7.5CVSS7.5AI score0.00063EPSS

CVE•added 2024/02/06 6:15 a.m.•101 views

CVE-2023-33064

Transient DOS in Audio when invoking callback function of ASM driver.

5.5CVSS5.5AI score0.00024EPSS

CVE•added 2024/05/06 3:15 p.m.•101 views

CVE-2024-23354

Memory corruption when the IOCTL call is interrupted by a signal.

8.4CVSS7.1AI score0.00175EPSS

CVE•added 2025/05/06 9:15 a.m.•101 views

CVE-2025-21459

Transient DOS while parsing per STA profile in ML IE.

7.5CVSS7.6AI score0.00092EPSS

CVE•added 2022/02/11 11:15 a.m.•100 views

CVE-2021-30317

Improper validation of program headers containing ELF metadata can lead to image verification bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice...

9.3CVSS7.7AI score0.00041EPSS

CVE•added 2022/06/14 10:15 a.m.•100 views

CVE-2022-22087

memory corruption in video due to buffer overflow while parsing mkv clip with no codechecker in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

10CVSS9.7AI score0.00369EPSS

CVE•added 2023/07/04 5:15 a.m.•100 views

CVE-2023-28542

Memory Corruption in WLAN HOST while fetching TX status information.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•100 views

CVE-2023-28584

Transient DOS in WLAN Host when a mobile station receives invalid channel in CSA IE while doing channel switch announcement (CSA).

7.5CVSS7.5AI score0.00061EPSS

CVE•added 2024/01/02 6:15 a.m.•100 views

CVE-2023-33113

Memory corruption when resource manager sends the host kernel a reply message with multiple fragments.

8.4CVSS7.7AI score0.0011EPSS

CVE•added 2024/07/01 3:15 p.m.•100 views

CVE-2024-23380

Memory corruption while handling user packets during VBO bind operation.

8.4CVSS8.2AI score0.00156EPSS

CVE•added 2021/09/09 8:15 a.m.•99 views

CVE-2021-1974

Possible buffer over read due to lack of alignment between map or unmap length of IPA SMMU and WLAN SMMU in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and ...

7.5CVSS7.7AI score0.00361EPSS

CVE•added 2022/02/11 11:15 a.m.•99 views

CVE-2021-30325

Possible out of bound access of DCI resources due to lack of validation process and resource allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and ...

6.7CVSS6.6AI score0.00047EPSS

CVE•added 2022/10/19 11:15 a.m.•99 views

CVE-2022-33214

Memory corruption in display due to time-of-check time-of-use of metadata reserved size in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

8.4CVSS7.1AI score0.00055EPSS

CVE•added 2023/07/04 5:15 a.m.•99 views

CVE-2023-21672

Memory corruption in Audio while running concurrent tunnel playback or during concurrent audio tunnel recording sessions.

8.4CVSS8.1AI score0.00045EPSS

CVE•added 2023/07/04 5:15 a.m.•99 views

CVE-2023-22386

Memory Corruption in WLAN HOST while processing WLAN FW request to allocate memory.

7.8CVSS7.6AI score0.00051EPSS

CVE•added 2024/01/02 6:15 a.m.•99 views

CVE-2023-43514

Memory corruption while invoking IOCTLs calls from user space for internal mem MAP and internal mem UNMAP.

8.4CVSS7.8AI score0.00112EPSS

CVE•added 2024/05/06 3:15 p.m.•99 views

CVE-2024-21475

Memory corruption when the payload received from firmware is not as per the expected protocol size.

7.8CVSS7.2AI score0.00112EPSS

CVE•added 2024/07/01 3:15 p.m.•99 views

CVE-2024-23372

Memory corruption while invoking IOCTL call for GPU memory allocation and size param is greater than expected size.

8.4CVSS8.3AI score0.00082EPSS

CVE•added 2025/03/03 11:15 a.m.•99 views

CVE-2024-53027

Transient DOS may occur while processing the country IE.

7.5CVSS7.2AI score0.0008EPSS

CVE•added 2021/03/17 6:15 a.m.•98 views

CVE-2020-11226

Out of bound memory read in Data modem while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

7.5CVSS7.5AI score0.0024EPSS

CVE•added 2022/06/14 10:15 a.m.•98 views

CVE-2022-22082

Memory corruption due to possible buffer overflow while parsing DSF header with corrupted channel count in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8.1AI score0.00123EPSS

CVE•added 2022/09/16 6:15 a.m.•98 views

CVE-2022-25656

Possible integer overflow and memory corruption due to improper validation of buffer size sent to write to console when computing the payload size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

8.4CVSS8.1AI score0.00069EPSS

CVE•added 2023/07/04 5:15 a.m.•98 views

CVE-2023-24854

Memory Corruption in WLAN HOST while parsing QMI WLAN Firmware response message.

7.8CVSS7.7AI score0.00052EPSS

CVE•added 2024/05/06 3:15 p.m.•98 views

CVE-2024-23351

Memory corruption as GPU registers beyond the last protected range can be accessed through LPAC submissions.

8.4CVSS7.1AI score0.00109EPSS

CVE•added 2024/07/01 3:15 p.m.•98 views

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition.