Qcn9074 Firmware@- Security Vulnerabilities and Issues — Page 6 of Qcn9074 Firmware@- CVE List

Lucene search

QualcommQcn9074 Firmware-

337 matches found

CVE•added 2023/01/09 8:15 a.m.•54 views

CVE-2022-33253

Transient DOS due to buffer over-read in WLAN while parsing corrupted NAN frames.

7.5CVSS5.9AI score0.00112EPSS

CVE•added 2023/01/09 8:15 a.m.•54 views

CVE-2022-40518

Information disclosure due to buffer overread in Core

6.8CVSS5.7AI score0.00047EPSS

CVE•added 2023/07/04 5:15 a.m.•54 views

CVE-2023-22667

Memory Corruption in Audio while allocating the ion buffer during the music playback.

8.4CVSS8.1AI score0.00051EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2023-28573

Memory corruption in WLAN HAL while parsing WMI command parameters.

7.8CVSS8AI score0.00033EPSS

CVE•added 2023/09/05 7:15 a.m.•54 views

CVE-2023-33015

Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame.

7.5CVSS7.5AI score0.00071EPSS

CVE•added 2024/06/03 10:15 a.m.•54 views

CVE-2023-43537

Information disclosure while handling T2LM Action Frame in WLAN Host.

7.5CVSS6.4AI score0.00091EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-33252

Information disclosure due to buffer over-read in WLAN while handling IBSS beacons frame.

8.2CVSS6AI score0.00063EPSS

CVE•added 2023/01/09 8:15 a.m.•53 views

CVE-2022-33276

Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.

8.4CVSS8.1AI score0.0006EPSS

CVE•added 2023/12/05 3:15 a.m.•53 views

CVE-2023-28586

Information disclosure when the trusted application metadata symbol addresses are accessed while loading an ELF in TEE.

6.5CVSS6.1AI score0.00039EPSS

CVE•added 2021/05/07 9:15 a.m.•52 views

CVE-2021-1925

Possible denial of service scenario due to improper handling of group management action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Musi...

7.8CVSS7.5AI score0.00245EPSS

CVE•added 2021/09/09 8:15 a.m.•52 views

CVE-2021-1971

Possible assertion due to lack of physical layer state validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.8CVSS7.4AI score0.00369EPSS

CVE•added 2022/06/14 10:15 a.m.•52 views

CVE-2021-35129

Memory corruption in BT controller due to improper length check while processing vendor specific commands in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

7.8CVSS8AI score0.00111EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-28546

Memory Corruption in SPS Application while exporting public key in sorter TA.

7.8CVSS7.7AI score0.0006EPSS

CVE•added 2023/09/05 7:15 a.m.•52 views

CVE-2023-28548

Memory corruption in WLAN HAL while processing Tx/Rx commands from QDART.

7.8CVSS8AI score0.00024EPSS

CVE•added 2023/12/05 3:15 a.m.•52 views

CVE-2023-33089

Transient DOS when processing a NULL buffer while parsing WLAN vdev.

7.5CVSS7.7AI score0.00222EPSS

CVE•added 2024/10/07 1:15 p.m.•52 views

CVE-2024-38397

Transient DOS while parsing probe response and assoc response frame.

7.5CVSS7.6AI score0.00207EPSS

CVE•added 2022/11/15 10:15 a.m.•51 views

CVE-2022-25667

Information disclosure in kernel due to improper handling of ICMP requests in Snapdragon Wired Infrastructure and Networking

7.5CVSS7.4AI score0.0016EPSS

CVE•added 2025/05/06 9:15 a.m.•51 views

CVE-2024-45562

Memory corruption during concurrent access to server info object due to unprotected critical field.

7.8CVSS6.7AI score0.00022EPSS

CVE•added 2021/05/07 9:15 a.m.•50 views

CVE-2021-1915

Buffer overflow can occur due to improper validation of NDP application information length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, ...

7.8CVSS7.7AI score0.00035EPSS

CVE•added 2022/01/03 8:15 a.m.•50 views

CVE-2021-30274

Possible integer overflow in access control initialization interface due to lack and size and address validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Network...

8.4CVSS7.8AI score0.00033EPSS

CVE•added 2025/05/06 9:15 a.m.•50 views

CVE-2024-45564

Memory corruption during concurrent access to server info object due to incorrect reference count update.

7.8CVSS7.8AI score0.00022EPSS

CVE•added 2021/06/09 7:15 a.m.•49 views

CVE-2021-1937

Reachable assertion is possible while processing peer association WLAN message from host and nonstandard incoming packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobi...

7.5CVSS7.6AI score0.0026EPSS

CVE•added 2021/10/20 7:15 a.m.•49 views

CVE-2021-30288

Possible stack overflow due to improper length check of TLV while copying the TLV to a local stack variable in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon M...

8.4CVSS7.4AI score0.00035EPSS

CVE•added 2023/01/09 8:15 a.m.•49 views

CVE-2022-40519

Information disclosure due to buffer overread in Core

6.8CVSS5.7AI score0.00047EPSS

CVE•added 2023/09/05 7:15 a.m.•49 views

CVE-2023-33016

Transient DOS in WLAN firmware while parsing MLO (multi-link operation).

7.5CVSS7.6AI score0.00091EPSS

CVE•added 2023/12/05 3:15 a.m.•49 views

CVE-2023-33080

Transient DOS while parsing a vender specific IE (Information Element) of reassociation response management frame.

7.5CVSS7.5AI score0.00194EPSS

CVE•added 2024/07/01 3:15 p.m.•48 views

CVE-2024-21482

Memory corruption during the secure boot process, when the bootm command is used, it bypasses the authentication of the kernel/rootfs image.

7.8CVSS7.2AI score0.00013EPSS

CVE•added 2024/09/02 12:15 p.m.•48 views

CVE-2024-33051

Transient DOS while processing TIM IE from beacon frame as there is no check for IE length.

7.5CVSS7.6AI score0.00174EPSS

CVE•added 2021/09/08 12:15 p.m.•47 views

CVE-2021-1928

Buffer over read could occur due to incorrect check of buffer size while flashing emmc devices in Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

6.1CVSS6.5AI score0.00045EPSS

CVE•added 2021/11/12 7:15 a.m.•47 views

CVE-2021-30266

Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infr...

6.7CVSS6.8AI score0.00048EPSS

CVE•added 2022/10/19 11:15 a.m.•47 views

CVE-2022-25736

Denial of service in WLAN due to out-of-bound read happens while processing VHT action frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music...

7.5CVSS7.5AI score0.00165EPSS

CVE•added 2024/05/06 3:15 p.m.•47 views

CVE-2023-43527

Information disclosure while parsing dts header atom in Video.

6.8CVSS6.7AI score0.00064EPSS

CVE•added 2024/08/05 3:15 p.m.•47 views

CVE-2024-21467

Information disclosure while handling beacon probe frame during scan entry generation in client side.

7.5CVSS6.5AI score0.00106EPSS

CVE•added 2025/05/06 9:15 a.m.•47 views

CVE-2024-45570

Memory corruption may occur during IO configuration processing when the IO port count is invalid.

7.8CVSS6.7AI score0.00022EPSS

CVE•added 2021/05/07 9:15 a.m.•46 views

CVE-2020-11289

Out of bound write can occur in TZ command handler due to lack of validation of command ID in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdrag...

7.8CVSS7.8AI score0.00033EPSS

CVE•added 2022/01/03 8:15 a.m.•46 views

CVE-2021-30271

Possible null pointer dereference in trap handler due to lack of thread ID validation before dereferencing it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, ...

7.8CVSS7.7AI score0.00031EPSS

CVE•added 2022/01/03 8:15 a.m.•46 views

CVE-2021-30275

Possible integer overflow in page alignment interface due to lack of address and size validation before alignment in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networ...

9.3CVSS7.8AI score0.00033EPSS

CVE•added 2023/01/09 8:15 a.m.•46 views

CVE-2022-33299

Transient DOS due to null pointer dereference in Bluetooth HOST while receiving an attribute protocol PDU with zero length data.

7.5CVSS7.5AI score0.00125EPSS

CVE•added 2024/07/01 3:15 p.m.•46 views

CVE-2024-21461

Memory corruption while performing finish HMAC operation when context is freed by keymaster.

8.4CVSS8.3AI score0.00098EPSS

CVE•added 2025/01/06 11:15 a.m.•46 views

CVE-2024-33067

Information disclosure while invoking callback function of sound model driver from ADSP for every valid opcode received from sound model driver.

6.1CVSS6.3AI score0.00027EPSS

CVE•added 2024/10/07 1:15 p.m.•46 views

CVE-2024-33073

Information disclosure while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.

8.2CVSS8.2AI score0.00183EPSS

CVE•added 2021/04/07 8:15 a.m.•45 views

CVE-2020-11252

Trustzone initialization code will disable xPU`s when memory dumps are enabled and lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infras...

7.2CVSS5.6AI score0.00043EPSS

CVE•added 2021/11/12 7:15 a.m.•45 views

CVE-2021-1903

Possible denial of service scenario can occur due to lack of length check on Channel Switch Announcement IE in beacon or probe response frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial...

5.3CVSS5.5AI score0.00216EPSS

CVE•added 2022/09/16 6:15 a.m.•45 views

CVE-2022-25652

Cryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking

9CVSS7.7AI score0.00085EPSS

CVE•added 2023/01/09 8:15 a.m.•45 views

CVE-2022-33286

Transient DOS due to buffer over-read in WLAN while processing 802.11 management frames.

7.5CVSS6.7AI score0.00123EPSS

CVE•added 2025/06/03 6:15 a.m.•45 views

CVE-2024-53013

Memory corruption may occur while processing voice call registration with user.

6.6CVSS6.8AI score0.00019EPSS

CVE•added 2025/06/03 6:15 a.m.•45 views

CVE-2025-27029

Transient DOS while processing the tone measurement response buffer when the response buffer is out of range.

7.5CVSS7.7AI score0.00055EPSS

CVE•added 2021/09/09 8:15 a.m.•44 views

CVE-2021-1909

Buffer overflow occurs in trusted applications due to lack of length check of parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapd...

7.8CVSS7.8AI score0.00035EPSS

CVE•added 2022/01/03 8:15 a.m.•44 views

CVE-2021-30303

Possible buffer overflow due to lack of buffer length check when segmented WMI command is received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice &...

7.8CVSS8AI score0.00035EPSS

CVE•added 2021/11/12 7:15 a.m.•43 views

CVE-2021-30264

Possible use after free due improper validation of reference from call back to internal store table in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and...

6.7CVSS6.7AI score0.00048EPSS

Total number of security vulnerabilities337