Qcn6224 Firmware Security Vulnerabilities and Issues — Qcn6224 Firmware CVE List

Information disclosure when the ADSP payload size received in HLOS in response to Audio Stream Manager matrix session is less than this expected size.

6.1CVSS6.6AI score0.00041EPSS

CVE•added 2025/01/06 11:15 a.m.•43 views

CVE-2024-33067

Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.

6.1CVSS6.3AI score0.00019EPSS

CVE•added 2025/02/03 5:15 p.m.•42 views

CVE-2024-38417

Information disclosure while processing IO control commands.

6.1CVSS6.3AI score0.00019EPSS

CVE•added 2024/11/04 10:15 a.m.•41 views

CVE-2024-33031

Memory corruption while processing the update SIM PB records request.

6.7CVSS6.8AI score0.00033EPSS

CVE•added 2024/11/04 10:15 a.m.•36 views

CVE-2024-33030

Memory corruption while parsing IPC frequency table parameters for LPLH that has size greater than expected size.

6.7CVSS6.8AI score0.00025EPSS

CVE•added 2025/03/03 11:15 a.m.•35 views

CVE-2024-43056

Transient DOS during hypervisor virtual I/O operation in a virtual machine.

6.5CVSS7.1AI score0.00021EPSS

CVE•added 2024/08/05 3:15 p.m.•22 views

CVE-2024-23357

Transient DOS while importing a PKCS#8-encoded RSA key with zero bytes modulus.

6.2CVSS6.4AI score0.00033EPSS

CVE•added 2024/08/05 3:15 p.m.•18 views

CVE-2024-23350

Permanent DOS when DL NAS transport receives multiple payloads such that one payload contains SOR container whose integrity check has failed, and the other is LPP where UE needs to send status message to network.

6.5CVSS6.5AI score0.00021EPSS

CVE•added 2025/07/08 1:15 p.m.•7 views

CVE-2025-21433

Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.

6.2CVSS6.6AI score0.00013EPSS