Qcn6024 Firmware Security Vulnerabilities and Issues — Qcn6024 Firmware CVE List

Lucene search

QualcommQcn6024 Firmware

380 matches found

CVE•added 2023/04/13 7:15 a.m.•345 views

CVE-2022-33269

Memory corruption due to integer overflow or wraparound in Core while DDR memory assignment.

9.3CVSS8.2AI score0.00051EPSS

CVE•added 2023/12/05 3:15 a.m.•294 views

CVE-2023-33106

Memory corruption while submitting a large list of sync points in an AUX command to the IOCTL_KGSL_GPU_AUX_COMMAND.

8.4CVSS8.3AI score0.00045EPSS

CVE•added 2023/12/05 3:15 a.m.•292 views

CVE-2023-33063

Memory corruption in DSP Services during a remote call from HLOS to DSP.

7.8CVSS8.1AI score0.00227EPSS

CVE•added 2023/12/05 3:15 a.m.•284 views

CVE-2023-33107

Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.

8.4CVSS8.3AI score0.0007EPSS

CVE•added 2021/07/13 6:15 a.m.•143 views

CVE-2021-1965

Possible buffer overflow due to lack of parameter length check during MBSSID scan IE parse in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

10CVSS9.7AI score0.2745EPSS

CVE•added 2023/03/10 9:15 p.m.•129 views

CVE-2022-33213

Memory corruption in modem due to buffer overflow while processing a PPP packet

8.8CVSS8.5AI score0.00117EPSS

CVE•added 2022/04/01 5:15 a.m.•119 views

CVE-2021-35103

Possible out of bound write due to improper validation of number of timer values received from firmware while syncing timers in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Netwo...

7.8CVSS7.7AI score0.00101EPSS

CVE•added 2022/04/01 5:15 a.m.•115 views

CVE-2021-35088

Possible out of bound read due to improper validation of IE length during SSID IE parse when channel is DFS in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure a...

9.1CVSS9AI score0.0032EPSS

CVE•added 2025/02/03 5:15 p.m.•111 views

CVE-2024-45569

Memory corruption while parsing the ML IE due to invalid frame content.

9.8CVSS9.7AI score0.00093EPSS

CVE•added 2022/10/19 11:15 a.m.•109 views

CVE-2022-25720

Memory corruption in WLAN due to out of bound array access during connect/roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdrago...

9.8CVSS9.4AI score0.00236EPSS

CVE•added 2022/02/11 11:15 a.m.•108 views

CVE-2021-35069

Improper validation of data length received from DMA buffer can lead to memory corruption. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

7.8CVSS7.8AI score0.00119EPSS

CVE•added 2023/02/12 4:15 a.m.•107 views

CVE-2022-33243

Memory corruption due to improper access control in Qualcomm IPC.

8.4CVSS8AI score0.00051EPSS

CVE•added 2022/11/15 10:15 a.m.•105 views

CVE-2022-25743

Memory corruption in graphics due to use-after-free while importing graphics buffer in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

8.4CVSS8AI score0.00057EPSS

CVE•added 2023/06/06 8:15 a.m.•104 views

CVE-2023-21670

Memory Corruption in GPU Subsystem due to arbitrary command execution from GPU in privileged mode.

7.8CVSS7.8AI score0.00035EPSS

CVE•added 2025/03/03 11:15 a.m.•104 views

CVE-2025-21424

Memory corruption while calling the NPU driver APIs concurrently.

7.8CVSS7.4AI score0.00017EPSS

CVE•added 2021/07/13 6:15 a.m.•103 views

CVE-2021-1954

Possible buffer over read due to improper validation of data pointer while parsing FILS indication IE in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.5CVSS7.6AI score0.00394EPSS

CVE•added 2024/03/04 11:15 a.m.•101 views

CVE-2023-28582

Memory corruption in Data Modem while verifying hello-verify message during the DTLS handshake.

9.8CVSS9.7AI score0.00167EPSS

CVE•added 2023/06/06 8:15 a.m.•100 views

CVE-2023-21656

Memory corruption in WLAN HOST while receiving an WMI event from firmware.

7.8CVSS7.9AI score0.00053EPSS

CVE•added 2021/07/13 6:15 a.m.•98 views

CVE-2021-1943

Possible buffer out of bound read can occur due to improper validation of TBTT count and length while parsing the beacon response in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.5CVSS7.6AI score0.00394EPSS

CVE•added 2021/07/13 6:15 a.m.•98 views

CVE-2021-1945

Possible out of bound read due to lack of length check of Bandwidth-NSS IE in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

7.5CVSS7.5AI score0.00305EPSS

CVE•added 2023/02/12 4:15 a.m.•96 views

CVE-2022-33280

Memory corruption due to access of uninitialized pointer in Bluetooth HOST while processing the AVRCP packet.

8.8CVSS8.1AI score0.00084EPSS

CVE•added 2024/01/02 6:15 a.m.•93 views

CVE-2023-33025

Memory corruption in Data Modem when a non-standard SDP body, during a VOLTE call.

9.8CVSS9.5AI score0.0016EPSS

CVE•added 2021/07/13 6:15 a.m.•92 views

CVE-2021-1964

Possible buffer over read due to improper validation of IE size while parsing beacon from peer device in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.5CVSS7.6AI score0.00394EPSS

CVE•added 2024/02/06 6:16 a.m.•92 views

CVE-2023-43513

Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element.

7.8CVSS7.7AI score0.00053EPSS

CVE•added 2024/04/01 3:15 p.m.•91 views

CVE-2024-21468

Memory corruption when there is failed unmap operation in GPU.

8.4CVSS8.6AI score0.00044EPSS

CVE•added 2022/02/11 11:15 a.m.•89 views

CVE-2021-30324

Possible out of bound write due to lack of boundary check for the maximum size of buffer when sending a DCI packet to remote process in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdra...

6.7CVSS6.8AI score0.00047EPSS

CVE•added 2023/04/13 7:15 a.m.•89 views

CVE-2022-33231

Memory corruption due to double free in core while initializing the encryption key.

9.3CVSS8.1AI score0.00044EPSS

CVE•added 2023/11/07 6:15 a.m.•89 views

CVE-2023-28553

Information Disclosure in WLAN Host when processing WMI event command.

6.1CVSS5.5AI score0.00056EPSS

CVE•added 2024/09/02 12:15 p.m.•89 views

CVE-2024-38402

Memory corruption while processing IOCTL call for getting group info.

7.8CVSS7.9AI score0.00022EPSS

CVE•added 2023/10/03 6:15 a.m.•88 views

CVE-2023-33029

Memory corruption in DSP Service during a remote call from HLOS to DSP.

8.4CVSS8AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•88 views

CVE-2023-33082

Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.

9.8CVSS9.8AI score0.00195EPSS

CVE•added 2021/06/09 5:15 a.m.•86 views

CVE-2020-11134

Possible stack out of bound write might happen due to time bitmap length and bit duration fields of the attributes like NAN ranging setup attribute inside a NAN management frame are not Properly validated in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electroni...

10CVSS9.3AI score0.0033EPSS

CVE•added 2023/11/07 6:15 a.m.•86 views

CVE-2023-22388

Memory Corruption in Multi-mode Call Processor while processing bit mask API.

9.8CVSS9.6AI score0.00164EPSS

CVE•added 2023/09/05 7:15 a.m.•86 views

CVE-2023-33021

Memory corruption in Graphics while processing user packets for command submission.

8.4CVSS8.2AI score0.00029EPSS

CVE•added 2023/02/12 4:15 a.m.•85 views

CVE-2022-40514

Memory corruption due to buffer copy without checking the size of input in WLAN Firmware while processing CCKM IE in reassoc response frame.

9.8CVSS9.8AI score0.00144EPSS

CVE•added 2023/05/02 6:15 a.m.•85 views

CVE-2023-21665

Memory corruption in Graphics while importing a file.

8.4CVSS8.1AI score0.0007EPSS

CVE•added 2023/07/04 5:15 a.m.•85 views

CVE-2023-22387

Arbitrary memory overwrite when VM gets compromised in TX write leading to Memory Corruption.

7.8CVSS7.6AI score0.00051EPSS

CVE•added 2023/04/13 7:15 a.m.•84 views

CVE-2022-40532

Memory corruption due to integer overflow or wraparound in WLAN while sending WMI cmd from host to target.

8.4CVSS8.2AI score0.00051EPSS

CVE•added 2023/06/06 8:15 a.m.•84 views

CVE-2023-21628

Memory corruption in WLAN HAL while processing WMI-UTF command or FTM TLV1 command.

8.4CVSS8.2AI score0.00053EPSS

CVE•added 2023/07/04 5:15 a.m.•84 views

CVE-2023-24851

Memory Corruption in WLAN HOST while parsing QMI response message from firmware.

7.8CVSS7.7AI score0.00052EPSS

CVE•added 2022/04/01 5:15 a.m.•83 views

CVE-2021-1950

Improper cleaning of secure memory between authenticated users can lead to face authentication bypass in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.8CVSS7.7AI score0.00015EPSS

CVE•added 2024/03/04 11:15 a.m.•83 views

CVE-2023-43553

Memory corruption while parsing beacon/probe response frame when AP sends more supported links in MLIE.

9.8CVSS9.8AI score0.0038EPSS

CVE•added 2021/09/08 12:15 p.m.•82 views

CVE-2021-1972

Possible buffer overflow due to improper validation of device types during P2P search in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructu...

10CVSS9.6AI score0.00262EPSS

CVE•added 2023/03/10 9:15 p.m.•82 views

CVE-2022-33256

Memory corruption due to improper validation of array index in Multi-mode call processor.

9.8CVSS9.7AI score0.0009EPSS

CVE•added 2023/08/08 10:15 a.m.•82 views

CVE-2022-40510

Memory corruption due to buffer copy without checking size of input in Audio while voice call with EVS vocoder.

9.8CVSS9.8AI score0.00124EPSS

CVE•added 2023/07/04 5:15 a.m.•82 views

CVE-2023-21631

Weak Configuration due to improper input validation in Modem while processing LTE security mode command message received from network.

9.8CVSS8.2AI score0.00074EPSS

CVE•added 2024/03/04 11:15 a.m.•82 views

CVE-2023-43552

Memory corruption while processing MBSSID beacon containing several subelement IE.

9.8CVSS9.8AI score0.00296EPSS

CVE•added 2021/02/22 7:15 a.m.•81 views

CVE-2020-11296

Arithmetic overflow can happen while processing NOA IE due to improper error handling in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voic...

7.5CVSS7.7AI score0.0026EPSS

CVE•added 2024/01/02 6:15 a.m.•81 views

CVE-2023-33094

Memory corruption while running VK synchronization with KASAN enabled.

8.4CVSS7.8AI score0.0006EPSS

CVE•added 2024/07/01 3:15 p.m.•81 views

CVE-2024-23373

Memory corruption when IOMMU unmap operation fails, the DMA and anon buffers are getting released.

8.4CVSS8.3AI score0.00039EPSS

Total number of security vulnerabilities380