Qca8337 Firmware Security Vulnerabilities and Issues — Page 7 of Qca8337 Firmware CVE List

Improper validation of kernel buffer address while copying information back to user buffer can lead to kernel memory information exposure to user space in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

6.2CVSS5.5AI score0.00035EPSS

CVE•added 2022/09/02 12:15 p.m.•68 views

CVE-2022-22067

Potential memory leak in modem during the processing of NSA RRC Reconfiguration with invalid Radio Bearer Config in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

7.8CVSS7.6AI score0.00157EPSS

CVE•added 2022/12/13 4:15 p.m.•68 views

CVE-2022-25672

Denial of service in MODEM due to reachable assertion while processing SIB1 with invalid Bandwidth in Snapdragon Mobile

7.5CVSS7.5AI score0.0019EPSS

CVE•added 2022/12/13 4:15 p.m.•68 views

CVE-2022-25692

Denial of service in Modem due to reachable assertion while processing the common config procedure in Snapdragon Auto, Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

7.5CVSS7.5AI score0.0006EPSS

CVE•added 2024/04/01 3:15 p.m.•68 views

CVE-2023-28547

Memory corruption in SPS Application while requesting for public key in sorter TA.

8.4CVSS8.7AI score0.0006EPSS

CVE•added 2024/02/06 6:16 a.m.•68 views

CVE-2023-33076

Memory corruption in Core when updating rollback version for TA and OTA feature is enabled.

7.8CVSS7.8AI score0.00031EPSS

CVE•added 2024/04/01 3:15 p.m.•68 views

CVE-2024-21463

Memory corruption while processing Codec2 during v13k decoder pitch synthesis.

9.8CVSS7.4AI score0.00084EPSS

CVE•added 2024/08/05 3:15 p.m.•68 views

CVE-2024-33013

Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length.

7.5CVSS7.6AI score0.00189EPSS

CVE•added 2021/02/22 7:15 a.m.•67 views

CVE-2020-11187

Possible memory corruption in BSI module due to improper validation of parameter count in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile

7.8CVSS7.8AI score0.00039EPSS

CVE•added 2023/03/10 9:15 p.m.•67 views

CVE-2022-25705

Memory corruption in modem due to integer overflow to buffer overflow while handling APDU response

7.8CVSS8AI score0.0006EPSS

CVE•added 2023/02/12 4:15 a.m.•67 views

CVE-2022-33232

Memory corruption due to buffer copy without checking size of input while running memory sharing tests with large scattered memory.

9.3CVSS8.4AI score0.0006EPSS

CVE•added 2023/03/10 9:15 p.m.•67 views

CVE-2022-33257

Memory corruption in Core due to time-of-check time-of-use race condition during dump collection in trust zone.

9.3CVSS7.6AI score0.00042EPSS

CVE•added 2023/02/12 4:15 a.m.•67 views

CVE-2022-33277

Memory corruption in modem due to buffer copy without checking size of input while receiving WMI command.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2023/04/13 7:15 a.m.•67 views

CVE-2022-33289

Memory corruption occurs in Modem due to improper validation of array index when malformed APDU is sent from card.

6.8CVSS6.8AI score0.00039EPSS

CVE•added 2023/05/02 6:15 a.m.•67 views

CVE-2022-33305

Transient DOS due to NULL pointer dereference in Modem while sending invalid messages in DCCH.

7.5CVSS7.5AI score0.00106EPSS

CVE•added 2023/10/03 6:15 a.m.•67 views

CVE-2023-24848

Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value.

8.2CVSS7.5AI score0.0012EPSS

CVE•added 2024/01/02 6:15 a.m.•67 views

CVE-2023-43511

Transient DOS while parsing IPv6 extension header when WLAN firmware receives an IPv6 packet that contains IPPROTO_NONE as the next header.

7.5CVSS7.5AI score0.00325EPSS

CVE•added 2024/04/01 3:15 p.m.•67 views

CVE-2024-21473

Memory corruption while redirecting log file to any file location with any file name.

9.8CVSS9.7AI score0.00188EPSS

CVE•added 2024/08/05 3:15 p.m.•67 views

CVE-2024-33026

Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2025/02/03 5:15 p.m.•67 views

CVE-2024-38416

Information disclosure during audio playback.

6.1CVSS6.2AI score0.00021EPSS

CVE•added 2022/01/03 8:15 a.m.•66 views

CVE-2021-30298

Possible out of bound access due to improper validation of item size and DIAG memory pools data while switching between USB and PCIE interface in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired ...

7.8CVSS7.6AI score0.0004EPSS

CVE•added 2023/05/02 8:15 a.m.•66 views

CVE-2022-33273

Information disclosure due to buffer over-read in Trusted Execution Environment while QRKS report generation.

7.3CVSS5.9AI score0.0003EPSS

CVE•added 2023/03/10 9:15 p.m.•66 views

CVE-2022-33278

Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.

7.8CVSS7.9AI score0.00067EPSS

CVE•added 2023/11/07 6:15 a.m.•66 views

CVE-2023-28574

Memory corruption in core services when Diag handler receives a command to configure event listeners.

9CVSS8.2AI score0.00045EPSS

CVE•added 2023/11/07 6:15 a.m.•66 views

CVE-2023-33056

Transient DOS in WLAN Firmware when firmware receives beacon including T2LM IE.

7.5CVSS7.6AI score0.00173EPSS

CVE•added 2024/03/04 11:15 a.m.•66 views

CVE-2023-33066

Memory corruption in Audio while processing RT proxy port register driver.

8.4CVSS8.6AI score0.0007EPSS

CVE•added 2024/03/04 11:15 a.m.•66 views

CVE-2023-33105

Transient DOS in WLAN Host and Firmware when large number of open authentication frames are sent with an invalid transaction sequence number.

7.5CVSS7.7AI score0.02377EPSS

Web

CVE•added 2024/08/05 3:15 p.m.•66 views

CVE-2024-33027

Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.

8.4CVSS8.5AI score0.00029EPSS

CVE•added 2021/09/09 8:15 a.m.•65 views

CVE-2021-1963

Possible use-after-free due to lack of validation for the rule count in filter table in IPA driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

6.7CVSS6.7AI score0.00048EPSS

CVE•added 2022/06/14 10:15 a.m.•65 views

CVE-2021-30340

Reachable assertion due to improper validation of coreset in PDCCH configuration in SA mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.6AI score0.00228EPSS

CVE•added 2022/09/02 12:15 p.m.•65 views

CVE-2022-22061

Out of bounds writing is possible while verifying device IDs due to improper length check before copying the data in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

7.8CVSS7.6AI score0.00064EPSS

CVE•added 2023/01/09 8:15 a.m.•65 views

CVE-2022-25715

Memory corruption in display driver due to incorrect type casting while accessing the fence structure fields

7.8CVSS7.1AI score0.0004EPSS

CVE•added 2023/01/09 8:15 a.m.•65 views

CVE-2022-25717

Memory corruption in display due to double free while allocating frame buffer memory

7.8CVSS7.2AI score0.00034EPSS

CVE•added 2023/01/09 8:15 a.m.•65 views

CVE-2022-33283

Information disclosure due to buffer over-read in WLAN while WLAN frame parsing due to missing frame length check.

8.2CVSS6.8AI score0.00091EPSS

CVE•added 2023/05/02 8:15 a.m.•65 views

CVE-2022-40504

Transient DOS due to reachable assertion in Modem when UE received Downlink Data Indication message from the network.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/06/06 8:15 a.m.•65 views

CVE-2022-40507

Memory corruption due to double free in Core while mapping HLOS address to the list.

8.4CVSS8.1AI score0.0301EPSS

CVE•added 2023/06/06 8:15 a.m.•65 views

CVE-2023-21658

Transient DOS in WLAN Firmware while processing the received beacon or probe response frame.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2024/03/04 11:15 a.m.•65 views

CVE-2023-28578

Memory corruption in Core Services while executing the command for removing a single event listener.

9.3CVSS9.6AI score0.00111EPSS

CVE•added 2023/12/05 3:15 a.m.•65 views

CVE-2023-28585

Memory corruption while loading an ELF segment in TEE Kernel.

8.8CVSS8.8AI score0.0004EPSS

CVE•added 2023/10/03 6:15 a.m.•65 views

CVE-2023-33026

Transient DOS in WLAN Firmware while parsing a NAN management frame.

7.5CVSS7.7AI score0.00194EPSS

CVE•added 2024/01/02 6:15 a.m.•65 views

CVE-2023-33085

Memory corruption in wearables while processing data from AON.

7.8CVSS7.8AI score0.0006EPSS

CVE•added 2022/06/14 10:15 a.m.•64 views

CVE-2021-30349

Improper access control sequence for AC database after memory allocation can lead to possible memory corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infra...

8.2CVSS6.8AI score0.00107EPSS

CVE•added 2023/03/10 9:15 p.m.•64 views

CVE-2022-33250

Transient DOS due to reachable assertion in modem when network repeatedly sent invalid message container for NR to LTE handover.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/03/10 9:15 p.m.•64 views

CVE-2022-33254

Transient DOS due to reachable assertion in Modem while processing SIB1 Message.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/01/09 8:15 a.m.•64 views

CVE-2022-33285

Transient DOS due to buffer over-read in WLAN while parsing WLAN CSA action frames.