Qca8337 Firmware Security Vulnerabilities and Issues — Page 9 of Qca8337 Firmware CVE List

Lucene search

QualcommQca8337 Firmware

651 matches found

CVE•added 2024/06/03 10:15 a.m.•61 views

CVE-2023-43551

Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command.

9.1CVSS9.4AI score0.00095EPSS

CVE•added 2024/08/05 3:15 p.m.•61 views

CVE-2024-33011

Transient DOS while parsing the MBSSID IE from the beacons, when the MBSSID IE length is zero.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2024/08/05 3:15 p.m.•61 views

CVE-2024-33018

Transient DOS while parsing the received TID-to-link mapping element of the TID-to-link mapping action frame.

7.5CVSS7.6AI score0.00628EPSS

CVE•added 2024/08/05 3:15 p.m.•61 views

CVE-2024-33019

Transient DOS while parsing the received TID-to-link mapping action frame.

7.5CVSS7.6AI score0.00244EPSS

CVE•added 2025/05/06 9:15 a.m.•61 views

CVE-2024-49835

Memory corruption while reading secure file.

7.8CVSS7.8AI score0.00022EPSS

CVE•added 2021/02/22 7:15 a.m.•60 views

CVE-2020-11204

Possible memory corruption and information leakage in sub-system due to lack of check for validity and boundary compliance for parameters that are read from shared MSG RAM in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon...

7.8CVSS7.7AI score0.00039EPSS

CVE•added 2022/09/02 12:15 p.m.•60 views

CVE-2022-22070

Memory corruption in audio due to lack of check of invalid routing address into APR Routing table in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

7.8CVSS7.8AI score0.00071EPSS

CVE•added 2023/09/05 7:15 a.m.•60 views

CVE-2023-21664

Memory Corruption in Core Platform while printing the response buffer in log.

7.8CVSS7.8AI score0.00053EPSS

CVE•added 2024/02/06 6:15 a.m.•60 views

CVE-2023-33046

Memory corruption in Trusted Execution Environment while deinitializing an object used for license validation.

7.8CVSS7.2AI score0.00018EPSS

CVE•added 2023/11/07 6:15 a.m.•60 views

CVE-2023-33048

Transient DOS in WLAN Firmware while parsing t2lm buffers.

7.5CVSS7.5AI score0.00194EPSS

CVE•added 2024/01/02 6:15 a.m.•60 views

CVE-2023-33062

Transient DOS in WLAN Firmware while parsing a BTM request.

7.5CVSS7.5AI score0.00188EPSS

CVE•added 2024/03/04 11:15 a.m.•60 views

CVE-2023-33095

Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR.

7.5CVSS7.6AI score0.00188EPSS

CVE•added 2024/12/02 11:15 a.m.•60 views

CVE-2024-33036

Memory corruption while parsing sensor packets in camera driver, user-space variable is used while allocating memory in kernel and parsing which can lead to huge allocation or invalid memory access.

6.7CVSS6.6AI score0.00018EPSS

CVE•added 2021/01/21 10:15 a.m.•59 views

CVE-2020-11119

Buffer over-read can happen when the buffer length received from response handlers is more than the size of the payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, ...

7.5CVSS7.8AI score0.0026EPSS

CVE•added 2021/03/17 6:15 a.m.•59 views

CVE-2020-11192

Out of bound write while parsing SDP string due to missing check on null termination in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

10CVSS9.3AI score0.00396EPSS

CVE•added 2021/10/20 7:15 a.m.•59 views

CVE-2021-1966

Possible buffer overflow due to lack of length check of source and destination buffer before copying in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music

6.7CVSS6.9AI score0.00059EPSS

CVE•added 2021/10/20 7:15 a.m.•59 views

CVE-2021-1967

Possible stack buffer overflow due to lack of check on the maximum number of post NAN discovery attributes while processing a NAN Match event in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Mu...

5.3CVSS5.7AI score0.0006EPSS

CVE•added 2021/11/12 7:15 a.m.•59 views

CVE-2021-30265

Possible memory corruption due to improper validation of memory address while processing user-space IOCTL for clearing Filter and Route statistics in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice...

6.7CVSS6.9AI score0.00055EPSS

CVE•added 2022/01/13 12:15 p.m.•59 views

CVE-2021-30313

Use after free condition can occur in wired connectivity due to a race condition while creating and deleting folders in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables...

6.7CVSS6.8AI score0.00076EPSS

CVE•added 2022/06/14 10:15 a.m.•59 views

CVE-2021-35087

Possible null pointer access due to improper validation of system information message to be processed in Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.5AI score0.00246EPSS

CVE•added 2022/09/02 12:15 p.m.•59 views

CVE-2021-35135

A null pointer dereference may potentially occur during RSA key import in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

6.2CVSS5.7AI score0.00047EPSS

CVE•added 2022/12/13 4:15 p.m.•59 views

CVE-2022-25673

Denial of service in MODEM due to reachable assertion while processing configuration from network in Snapdragon Mobile

7.5CVSS7.5AI score0.0019EPSS

CVE•added 2022/12/13 4:15 p.m.•59 views

CVE-2022-25691

Denial of service in Modem due to reachable assertion while processing SIB1 with invalid SCS and bandwidth settings in Snapdragon Mobile

7.5CVSS7.5AI score0.0019EPSS

CVE•added 2023/01/09 8:15 a.m.•59 views

CVE-2022-33266

Memory corruption in Audio due to integer overflow to buffer overflow while music playback of clips like amr,evrc,qcelp with modified content.

7.8CVSS7AI score0.00059EPSS

CVE•added 2023/03/10 9:15 p.m.•59 views

CVE-2022-40527

Transient DOS due to reachable assertion in WLAN while processing PEER ID populated by TQM.

7.5CVSS7.5AI score0.00123EPSS

CVE•added 2023/10/03 6:15 a.m.•59 views

CVE-2023-22385

Memory Corruption in Data Modem while making a MO call or MT VOLTE call.

9.8CVSS9.1AI score0.00126EPSS

CVE•added 2023/12/05 3:15 a.m.•59 views

CVE-2023-28550

Memory corruption in MPP performance while accessing DSM watermark using external memory address.

7.8CVSS7.9AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•59 views

CVE-2023-28558

Memory corruption in WLAN handler while processing PhyID in Tx status handler.

7.8CVSS7.9AI score0.0003EPSS

CVE•added 2023/12/05 3:15 a.m.•59 views

CVE-2023-33041

Under certain scenarios the WLAN Firmware will reach an assertion due to state confusion while looking up peer ids.

7.5CVSS7.5AI score0.00148EPSS

CVE•added 2023/12/05 3:15 a.m.•59 views

CVE-2023-33070

Transient DOS in Automotive OS due to improper authentication to the secure IO calls.

7.1CVSS5.8AI score0.00054EPSS

CVE•added 2024/02/06 6:16 a.m.•59 views

CVE-2023-33077

Memory corruption in HLOS while converting from authorization token to HIDL vector.

7.8CVSS7.7AI score0.0002EPSS

CVE•added 2021/11/12 7:15 a.m.•58 views

CVE-2021-1975

Possible heap overflow due to improper length check of domain while parsing the DNS response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

10CVSS9.6AI score0.00325EPSS

CVE•added 2022/01/13 12:15 p.m.•58 views

CVE-2021-30287

Possible assertion due to improper validation of symbols configured for PDCCH monitoring in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

7.5CVSS7.6AI score0.00359EPSS

CVE•added 2022/10/19 11:15 a.m.•58 views

CVE-2022-25660

Memory corruption due to double free issue in kernel in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

7.8CVSS7.8AI score0.00085EPSS

CVE•added 2022/12/13 4:15 p.m.•58 views

CVE-2022-25681

Possible memory corruption in kernel while performing memory access due to hypervisor not correctly invalidated the processor translation caches in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile

8.4CVSS7.7AI score0.00079EPSS

CVE•added 2023/01/09 8:15 a.m.•58 views

CVE-2022-25721

Memory corruption in video driver due to type confusion error during video playback

7.8CVSS7.1AI score0.0004EPSS

CVE•added 2022/10/19 11:15 a.m.•58 views

CVE-2022-25749

Transient Denial-of-Service in WLAN due to buffer over-read while parsing MDNS frames. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voi...

7.5CVSS7.7AI score0.00276EPSS

CVE•added 2022/11/15 10:15 a.m.•58 views

CVE-2022-33236

Transient DOS due to buffer over-read in WLAN firmware while parsing cipher suite info attributes. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.5CVSS7.7AI score0.00198EPSS

CVE•added 2023/04/13 7:15 a.m.•58 views

CVE-2022-33270

Transient DOS due to time-of-check time-of-use race condition in Modem while processing RRC Reconfiguration message.

7.5CVSS6AI score0.00081EPSS

CVE•added 2023/09/05 7:15 a.m.•58 views

CVE-2023-28549

Memory corruption in WLAN HAL while parsing Rx buffer in processing TLV payload.

7.8CVSS8AI score0.00027EPSS

CVE•added 2024/01/02 6:15 a.m.•58 views

CVE-2023-33030

Memory corruption in HLOS while running playready use-case.

9.3CVSS7.8AI score0.0006EPSS

CVE•added 2023/11/07 6:15 a.m.•58 views

CVE-2023-33061

Transient DOS in WLAN Firmware while parsing WLAN beacon or probe-response frame.

7.5CVSS7.6AI score0.00188EPSS

CVE•added 2024/03/04 11:15 a.m.•58 views

CVE-2023-33084

Transient DOS while processing IE fragments from server during DTLS handshake.

7.5CVSS7.6AI score0.00187EPSS

CVE•added 2024/03/04 11:15 a.m.•58 views

CVE-2023-33096

Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16.

7.5CVSS7.5AI score0.00188EPSS

CVE•added 2023/12/05 3:15 a.m.•58 views

CVE-2023-33097

Transient DOS in WLAN Firmware while processing a FTMR frame.

7.5CVSS7.5AI score0.00147EPSS

CVE•added 2024/03/04 11:15 a.m.•58 views

CVE-2023-33103

Transient DOS while processing CAG info IE received from NW.

7.5CVSS7.6AI score0.00144EPSS

CVE•added 2021/11/12 7:15 a.m.•57 views

CVE-2021-1924

Information disclosure through timing and power side-channels during mod exponentiation for RSA-CRT in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & M...

9CVSS7.4AI score0.00045EPSS

CVE•added 2021/09/09 8:15 a.m.•57 views

CVE-2021-1952

Possible buffer over read occurs due to lack of length check of request buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music

7.8CVSS7.7AI score0.00033EPSS

CVE•added 2022/09/02 12:15 p.m.•57 views

CVE-2021-35122

Non-secure region can try modifying RG permissions of IO space xPUs due to improper input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables

9.3CVSS7.6AI score0.00046EPSS

CVE•added 2023/06/06 8:15 a.m.•57 views

CVE-2022-22060

Assertion occurs while processing Reconfiguration message due to improper validation

7.5CVSS7.5AI score0.00107EPSS

Total number of security vulnerabilities651